This is a list of more or less known open-source projects useful for all kinds of reverse engineering, code behavior analysis, binary forensics, debugging and so on. I wanted to create a comprehensive list that includes very basic tools, but also some unique, not very popular, yet promising and interesting one-of-the-kind projects. I found it pretty annoying there is no good refernce list like this, and pretty often we have to reinvent the wheel every time we want to complete some obscure task. Unlike some other "rev-eng" lists (e.g. the one at packetstorm), this avoids listing many almost completely similar tools - twenty fuzz tools, fifty gdb GUIs, one million malloc tracers. I am also not going to put tools like source browsing utilities or source analyzers, because they are of very little value in such work, unless you want to find obvious bugs in someone else's sources, which is a whole different issue.
Please mail me with any submissions or corrections at <>.
1) Name: strace
Desc: The most basic syscall tracer
URL:
2) Name: ltrace
Desc: A popular library call tracer
URL:
3) Name: gdb
Desc: The GNU debugger
URL:
4) Name: objdump, strings, readelf, nm, objcopy
Desc: GNU binutils - standard tools for dealing with executables
URL:
5) Name: the dude
Desc: A nice non-ptrace debugger, our savior!
URL:
6) Name: bastard
Desc: Very extensive debugging environment
URL:
7) Name: PICE
Desc: Kernel-level symbolic debugger, "SoftICE for Linux"
Notes: also see kdb ()
URL:
9) Name: biev
Desc: The binary viewer.
URL:
10) Name: sourcery
Desc: A nice cross-platform disassembler
URL:
11) Name: LDAsm
Desc: GUI debugger
Note: many alternatives: KIDAsm, DDD, xgdb, kdbg ...
URL:
12) Name: reap
Desc: Disassembler, assembly code editor
URL:
13) Name: reqt
Desc: Binary information extractor
URL:
14) Name: xtrace
Desc: C code tracer (for debugging code only)
URL: ???
15) Name: fenris, ragnarok, aegir, nc-aegir
Desc: application tracer, its "GUI", and an interactive debugger / GUI
URL:
http://lcamtuf.coredump.cx/fenris/devel.shtml
17) Name: ElectricFence
Desc: dynamic memory debugger
Note: many alternatives: ccmalloc, debauch ...
URL: ???
18) Name: stan
Desc: binary stream analyzer (good for data analysis)
URL:
20) Name: ExecTrace
Desc: execution path logger
URL:
21) Name: hex
Desc: Hex editor
URL:
22) Name: sdebug
Desc: segment debugger for ELF
URL:
23) Name: objdump output beautifier
Desc: self explanatory
URL:
24) Name: kgdb
Desc: remote kernel debugging
URL:
25) Name: Linux Kernel Crash Dumps
Desc: self explanatory
URL:
26) Name: ELFIO
Desc: ELF reader / writer
URL:
27) Name: SPIKE
Desc: protocol rev eng tool
URL:
28) Name: DCC
Desc: C decompiler
URL:
29) Name: REC
Desc: partial C decompiler (assembly language annotator?)
URL:
30) Name: syscalltrack
Desc: a nice syscall tracker utility
URL:
31) Name: HT Editor
Desc: Executable editor / analyzer
URL:
阅读(785) | 评论(0) | 转发(0) |