Monday, June 18, 2007

all IDA Signatures

hi
have fun with this:)
IDA Signatures
link:
http://rapidshare.com/files/38014929/all_sig_4_ida_3y_REM.rar
Posted by REM in 23:19:28 | Permalink | No Comments »

Sunday, June 17, 2007

Class And Interface To Names

hi
This small IDAPython script scans an idb file for class and interfaces UUIDs and creates the matching structure and its name. Unfortunately IDA doesn’t do this automatically, thus this little helper. It personally helped me alot, while reversing several malwares using the COM interface, e.g. for browser or outlook manipulation, BITS file transfer or dumping the protected storage. The script was tested with IDAPython v0.9.0 and Python 2.4. Make sure to copy interfaces.txt + classes.txt + ClassAndInterfaceToNames.py to IDADIR, e.g. C:\Program Files\IDA
link:
Posted by REM in 18:40:43 | Permalink | No Comments »

IDA API Help v 0.3

hi
IDAAPIHelp is a small IDAPython script, that saves time when searching for API Information while e.g. analyzing a malware with IDA Pro. It looks at cursor position for a valid api call and if found it tries to show you the eligible API Info from the provided helpfile.
link:
Posted by REM in 18:32:06 | Permalink | No Comments »