| Сейчас на форуме: (+8 невидимых) |
 |
eXeL@B —› Софт, инструменты —› dump_all/load_all tool set |
| Посл.ответ | Сообщение |
|
|
Создано: 29 августа 2008 18:07 · Личное сообщение · #1 dump_all/load_all tool set (c) 2008 deroko of ARTeam dump_all/load_all tool set is designed to make analyze of a certain protection easier. It can be also used for the analyze of a malware, but it's not it's primary purpose. dump_all.exe is utility which will dump all memory regions from a certain process. load_all.plw is an IDA plugin which will load all of these dumps to their addresses in IDA database. How to use: copy load_all.plw into IDA\plugins folder, and use dump_all.exe to dump regions into some folder (advice is to use newly created folder), while in IDA go to plugins folder or press Alt-O and select any dump file and all files with .dmp from that folder will be loaded. That's it... (c) 2008 deroko of ARTeam  2be8_29.08.2008_CRACKLAB.rU.tgz - dumpall.rar
 |
|
|
Создано: 29 августа 2008 18:17 · Личное сообщение · #2 pavka Version of IDA ? ----- My love is very cool girl. |
|
|
Создано: 24 сентября 2008 12:28 · Поправил: ClockMan · Личное сообщение · #3 Dump_all/load_all Set Of Tools For IDA 5.x Author: deroko 24 Sep 2008 A set made of two programs (an IDA plugin and a dumper) useful to analyze dumped memory regions inside IDA. Useful for malware or VMs to analysis of dynamically allocated memory code sections (full sources included) 7609_24.09.2008_CRACKLAB.rU.tgz - ida_loaddump_all_by_deroko.rar
----- Чтобы правильно задать вопрос, нужно знать большую часть ответа. Р.Шекли. |
|
eXeL@B —› Софт, инструменты —› dump_all/load_all tool set |
Для печати