This media is not supported in your browser
VIEW IN TELEGRAM
#DWORD
ویدیو آموزش بررسی و تشریح ASLR و DEP در ساختار فایل های PE
آشنایی با Linker Security در Visual Studio
بررسی DLL Characteristics در بخش IMAGE_OPTIONAL_HEADER
بررسی رفتار دیباگر در صورت فعال یا غیر فعال بودن ASLR
📄لینک ویدیو
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
ویدیو آموزش بررسی و تشریح ASLR و DEP در ساختار فایل های PE
آشنایی با Linker Security در Visual Studio
بررسی DLL Characteristics در بخش IMAGE_OPTIONAL_HEADER
بررسی رفتار دیباگر در صورت فعال یا غیر فعال بودن ASLR
📄لینک ویدیو
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
This media is not supported in your browser
VIEW IN TELEGRAM
#DWORD
برنامه ASLR-DEP Patcher جهت حذف خصیصه های ASLR و DEP از ساختار فایل های PE با قابلیت پشتیبانی از فایل های 32 و 64 بیت.
📥 لینک دانلود نرم افزار
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
برنامه ASLR-DEP Patcher جهت حذف خصیصه های ASLR و DEP از ساختار فایل های PE با قابلیت پشتیبانی از فایل های 32 و 64 بیت.
📥 لینک دانلود نرم افزار
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
Media is too big
VIEW IN TELEGRAM
#DWORD
This tools change DLL behavior to EXE, so you can load it in debugger without DLL loader.
➖Support 32 and 64 bit DLL files
➖Support Re-base (Optional)(This option will change the Image Base of DLL to default EXE value based on 32 or 64 bit)
➖Support ASLR-DEP remover (Optional)
برنامه DLL to EXE Converter جهت تغییر رفتار فایل های DLL به EXE می باشد.
مزیت اینکار در زمان دیباگ کردن فایل های DLL با استفاده از دیباگر است به این معنی که زمان دیباگ کردن فایل های DLL دیباگر با استفاده از DLL Loader فایل ما را لود نمیکنه و فکر میکند که فایل DLL ما یک فایل EXE هست.
اینکار برای راحتی دیباگ کردن فایل های DLL مورد استفاده دارد.
📥 لینک دانلود نرم افزار
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
This tools change DLL behavior to EXE, so you can load it in debugger without DLL loader.
➖Support 32 and 64 bit DLL files
➖Support Re-base (Optional)(This option will change the Image Base of DLL to default EXE value based on 32 or 64 bit)
➖Support ASLR-DEP remover (Optional)
برنامه DLL to EXE Converter جهت تغییر رفتار فایل های DLL به EXE می باشد.
مزیت اینکار در زمان دیباگ کردن فایل های DLL با استفاده از دیباگر است به این معنی که زمان دیباگ کردن فایل های DLL دیباگر با استفاده از DLL Loader فایل ما را لود نمیکنه و فکر میکند که فایل DLL ما یک فایل EXE هست.
اینکار برای راحتی دیباگ کردن فایل های DLL مورد استفاده دارد.
📥 لینک دانلود نرم افزار
🆔 instagram : dword.ir
🆔 Telegram : @securebyte
#Misc #eBook
Intel® 64 and IA-32 Architectures
Software Developer’s Manual
UPDATE : JUNE,2021
This document contains all four volumes of the Intel 64 and IA-32 Architectures Software Developer's Manual:
➖Basic Architecture
➖Instruction Set Reference A-Z
➖System Programming Guide
➖Model-Specific Registers
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Intel® 64 and IA-32 Architectures
Software Developer’s Manual
UPDATE : JUNE,2021
This document contains all four volumes of the Intel 64 and IA-32 Architectures Software Developer's Manual:
➖Basic Architecture
➖Instruction Set Reference A-Z
➖System Programming Guide
➖Model-Specific Registers
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍1
325462-sdm-vol-1-2abcd-3abcd.pdf
50.5 MB
#Misc #eBook
Intel® 64 and IA-32 Architectures
Software Developer’s Manual UPDATE-JUNE_2021
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Intel® 64 and IA-32 Architectures
Software Developer’s Manual UPDATE-JUNE_2021
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
❤3👍2
Hello dear members,
As you know, the main language of this channel is Persian but we'll try to use both Persian and English languages.
According to new Telegram feature we activated translate option in channel and group. So you can press and hold a message to translate it into your language.( You must activate translate in your profile settings)
You can also ask your questions in discussion group.
Have a good time.
_
As you know, the main language of this channel is Persian but we'll try to use both Persian and English languages.
According to new Telegram feature we activated translate option in channel and group. So you can press and hold a message to translate it into your language.( You must activate translate in your profile settings)
You can also ask your questions in discussion group.
Have a good time.
_
👍23❤7😱1
#Github #Programming #UASM
Support for UASM x86 and x64 assembler in RadASM 2.2.2.x
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Support for UASM x86 and x64 assembler in RadASM 2.2.2.x
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍11
◾️برگزاری دوره چهارم |مهندسی معکوس نرم افزار سطح مقدماتی| از آکادمی DWORD
🗓 تاریخ برگزاری : پنجشنبه 28 بهمن ماه
🌐 اطلاعات بیشتر و ثبت نام در دوره :
dword.ir/rev01
@securebyte
🗓 تاریخ برگزاری : پنجشنبه 28 بهمن ماه
🌐 اطلاعات بیشتر و ثبت نام در دوره :
dword.ir/rev01
@securebyte
👍3
Media is too big
VIEW IN TELEGRAM
#Tutorial #ReverseEngineering #Free
Analyse ApinSoft products
Duration : 23 Min
➖Subjects :
🔸How to patch product without Registration key
🔸How to find Machine ID algorithm
🔸How to find correct Registration Key
🔸How to change Machine ID
تحلیل برنامه های وب سایت ApinSoft
مدت زمان : 23 دقیقه
➖موضوعات :
🔹نحوه Patch کردن برنامه بدون داشتن Registration Key
🔹نحوه پیدا کردن الگوریتم Machine ID
🔹نحوه پیدا کردن صحیح Registration Key
🔹نحوه تغییر Machine ID
@securebyte
https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Analyse ApinSoft products
Duration : 23 Min
➖Subjects :
🔸How to patch product without Registration key
🔸How to find Machine ID algorithm
🔸How to find correct Registration Key
🔸How to change Machine ID
تحلیل برنامه های وب سایت ApinSoft
مدت زمان : 23 دقیقه
➖موضوعات :
🔹نحوه Patch کردن برنامه بدون داشتن Registration Key
🔹نحوه پیدا کردن الگوریتم Machine ID
🔹نحوه پیدا کردن صحیح Registration Key
🔹نحوه تغییر Machine ID
@securebyte
https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍16👎2❤1
گروه اول از دوره چهارم آموزش مهندسی معکوس نرم افزار سطح مقدماتی، تشکیل شده و طبق دوره های قبلی دوستانی که تمایل به حضور در دوره را دارند میتوانند با شرایط اقساطی در دوره شرکت کنند.
مدت زمان دوره : 50 ساعت
روز های برگزاری : پنجشنبه و جمعه
ساعات برگزاری : 12 تا 14:30 دقیقه
برای مشاهده اطلاعات دوره، سرفصل ها و ثبت نام در دوره از لینک زیر اقدام کنید.
dword.ir/rev01
@securebyte
_
مدت زمان دوره : 50 ساعت
روز های برگزاری : پنجشنبه و جمعه
ساعات برگزاری : 12 تا 14:30 دقیقه
برای مشاهده اطلاعات دوره، سرفصل ها و ثبت نام در دوره از لینک زیر اقدام کنید.
dword.ir/rev01
@securebyte
_
👍6👎1
#Article #ReverseEngineering
X64 Function Hooking by Example
🌐 Articles Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
X64 Function Hooking by Example
🌐 Articles Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍4👎2❤1🔥1🤩1
#Article #MalwareAnalysis
Anti-Disassembly techniques used by malware (a primer) Part 1-2
There are chances that malware authors implement some kind of trolling so that a malware analyst has a hard time figuring out code during static analysis (IDA Pro ?)
🌐 Part1 - 🌐 Part2
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Anti-Disassembly techniques used by malware (a primer) Part 1-2
There are chances that malware authors implement some kind of trolling so that a malware analyst has a hard time figuring out code during static analysis (IDA Pro ?)
🌐 Part1 - 🌐 Part2
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
🎉5👎2🔥2👍1
#Project #MalwareAnalysis
YaraDbg
Is a free web-based Yara debugger to help security analysts to write hunting or detection rules with less effort and more confidence.
🌐 Website
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
YaraDbg
Is a free web-based Yara debugger to help security analysts to write hunting or detection rules with less effort and more confidence.
🌐 Website
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
🔥3
#Github #ReverseEngineering
This is just a x64dbg noscript system support By Ahmadmansoor
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
This is just a x64dbg noscript system support By Ahmadmansoor
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍8
#Github #ReverseEngineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
🔥7
#Article #Hooking
A Comprehensive Guide to Hooking Windows APIs with Python
In this article, we explore when and why it’s best to choose Python for hooking Windows APIs and explain how to use this language for setting hooks based on easy-to-follow examples.
🌐 Article Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
A Comprehensive Guide to Hooking Windows APIs with Python
In this article, we explore when and why it’s best to choose Python for hooking Windows APIs and explain how to use this language for setting hooks based on easy-to-follow examples.
🌐 Article Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
🔥7❤1
کانال بایت امن
#Github #Tools 🗳XAPKDetector is Android/APK/DEX detector for Windows, Linux and MacOS. 🔸Heuristic scan 🔸String viewer 🔸Hex viewer 🔸Entropy viewer 🔸Hash viewer 🔸ELF viewer 🔸DEX raw viewer 🌐 Project Link Telegram Channel : @securebyte Our Public Group :…
#Update
Version 0.03
[+] Source code qt6 compatibility
[+] Bundle for Apple M1 processor
[+] APKS support
[+] CMAKE build system
[+] More than 100 new detects
[+] New "All types" mode
[+] New console feautures
[+] Colored output for console
[+] New translations
[+] Many bugs have been fixed
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
Version 0.03
[+] Source code qt6 compatibility
[+] Bundle for Apple M1 processor
[+] APKS support
[+] CMAKE build system
[+] More than 100 new detects
[+] New "All types" mode
[+] New console feautures
[+] Colored output for console
[+] New translations
[+] Many bugs have been fixed
🌐 Project Link
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍4
#Tools #PEAnatomist
The free PEAnatomist utility supports almost all known and some undocumented structures inside MS PortableExecutable files (EXE, DLL, SYS and the like), LIB files and object files in COFF, MSVC CxxIL and ExtendedObj formats, and also performs simple analysis of the received data.
🌐 Website
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
The free PEAnatomist utility supports almost all known and some undocumented structures inside MS PortableExecutable files (EXE, DLL, SYS and the like), LIB files and object files in COFF, MSVC CxxIL and ExtendedObj formats, and also performs simple analysis of the received data.
🌐 Website
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍4
ghidradec1.4.zip
5.6 MB
#Tools #GhidraDec
GhidraDec v1.4 By chants
Ghidra Decompiler Plugin for IDA Pro
[+] IDA Pro 7.7 - 7.6 - 7.5 - 7.2 - 7.0 - 6.8
[+] Ghidra 10.1.2
Password = exetools
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
GhidraDec v1.4 By chants
Ghidra Decompiler Plugin for IDA Pro
[+] IDA Pro 7.7 - 7.6 - 7.5 - 7.2 - 7.0 - 6.8
[+] Ghidra 10.1.2
Password = exetools
Telegram Channel : @securebyte
Our Public Group : https://news.1rj.ru/str/joinchat/8IAKs9HaoGU2NmE0
_
👍7