找回密码
 立即注册
dumpallwillload | 程序非源代码 2021-05-23 310 0star收藏 版权: . 保留作者信息 . 禁止商业使用 . 禁止修改作品
set of 2 tools which tend to simplfy task when analyzing protection with
many many buffers used as anti-dump or a vm. dump_all.exe will dump all regions
from the target, and load_all.plw is an ida plugin which will load all of these
memory dumps into IDA database for easy analyze. Kinda usefull, as you don't
have to run you target several times to obtain dump of a needed memory buffer.

Note that it will dump everything, heap, stack, etc... and all dumps are loaded as
binary data file into ida. It's first release, and seems so far to work ok with all
tested binaries.

1621746535150.rar



上一篇:dotNET Tracer Patching
下一篇:Generic Packers like UPX, ASPack, FSG, Etc. Unpackers