Tools
| Arbor-Developed Tools | |
 flowgrep |
updated: 04.04.06 |
|
Author: Jose Nazario Email: jose@monkey.org Size: ~8 KB MD5: 47131bde68a78dc9726a08cb71a093d1 Update Summary: Initial release on AERT portal flowgrep is a basic IDS/IPS tool written in python as a way to help you investigate and manage your network. it works by sniffing traffic, reassembling TCP streams, and IP and UDP fragments into single packets, and allowing you to "grep" through their payloads using regular expressions. the quality of the regular expression engine is similar to Perl's. think of it as a marriage of tcpflow, tcpkill, and ngrep. Further tool details are available at the flowgrep homepage. |
|
| test |
updated: 07.30.07 |
|
Author: Justin Email: test@test.com Size: ~24 KB MD5: 222 Update Summary: Nice little template Template that is nice |
|
 |
|
| Arbor-Recommended Tools | |
| dltrace |
updated: 04.04.06 |
|
Author: Richard Johnson Email: rjohnson@idefense.com Size: ~68 KB MD5: ceb8465b010a871ffe5685d003eabaaa Update Summary: Fixed missing library path (/lib/tls). dltrace is a dynamic library call tracer which attempts to remain portable to all x86 platforms that support ELF binaries and expose a debugging interface via procfs or the ptrace() system call. The shared library call tracing is done at a level which allows calls to all symbols exported by loaded libraries to be traced. In addition, dltrace does not rely on rtld symbols to retrieve library and symbol information and is capable of determing function arguments dynamically via run-time disassembly. Further tool details are available at the dltrace homepage. |
|
| IDA Function Analyzer |
updated: 04.04.06 |
|
Author: Pedram Amini Email: pamini@idefense.com Size: ~21 KB MD5: a0b40085fca1c9f3d2d1c12c14725c71 Update Summary: dded gml_export() routine for generating GML graphs. Written as a C.. class, Function Analyzer was originally developed to provide an abstracted layer over "chunked" functions frequently found in Microsoft optimize compiled binaries. As of IDA v4.7 this functionality is built into the SDK. However, Function Analyzer can be used to construct plug-ins compatible across older versions and provides abstracted next_ea()/prev_ea() routines for stepping through an internal "unchunked" instruction list. The abstraction layer also exposes the following function-level information: basic block enumeration (nodes, edges), call count, MD5 hash, CRC, customizable GDL (Wingraph) and GML graph generation. Further tool details are available at the IDA Function Analyzer homepage. |
|
| PaiMei |
updated: 07.14.06 |
|
Author: Pedram Amini Email: pedram.amini@gmail.com Size: ~1 MB MD5: C6C346B11574FF33F6FD33BB5B843F60 Update Summary: Initial release PaiMei is a reverse engineering framework consisting of multiple extensible components. The goal of the framework is to reduce the time from "idea" to prototype to a matter of minutes, instead of days. PaiMei is written entirely in Python and exposes at the highest level a debugger, a graph based binary abstraction and a set of utilities for accomplishing various repetitive tasks. The framework can essentially be thought of as a reverse engineer's swiss army knife and has already been proven effective for a wide range of both static and dynamic tasks such as: fuzzer assistance, code coverage tracking, data flow tracking and more. Further tool details are available at the PaiMei homepage. |
|
| Unispector |
updated: 04.04.06 |
|
Author: Ilfak Guilfanov Email: ig@hexblog.com Size: ~30 KB MD5: 5FD815779E32E176E08371855746833B Update Summary: Unispector - display contents of unicode strings. Further details are available at the unispector homepage. |
|
|
|
