r2frida-5.9.8 is out!
🔹Support for hardware breakpoints and watchpoints
🔹Adds the new :ies command to enumerate app entrypoints
👉 More details: https://t.co/bIwDK9gQyG
#frida#radare2#r2frida#reverseengineering
@allthingsida@saidelike Let's imagine nothing happened, i just deleted the repo, feel free to make yours private and let's chat in private. I also recognize that I could have handled it better. Imho it's never too late if there are good intentions
@allthingsida@saidelike I tend to be proud when someone forks, steals or gets inspired from my work.But i guess i'm a mistake in all this infosec world. I think you can also get inspiration from the version the AI did from the other plugins (yeah i'm not even saying me here) happy to chat and test yours
Listen @gabrielgonzalez 96 that doesn't even reproduce on r2 6.x — your bare ps reads from seek 6 and drops the r2 -qc. Cute on your build. Mine: 92 bytes, zero offset constants (seek-chained pokes + a one-byte s-1 over your $* newline), and it actually self-reproduces on current r2. Correct and shorter you and @marioballano loose the battle @radareorg@trufae https://t.co/FXRtxQvrQU
@Seifreed@marioballano@radareorg@trufae do you know why RAM it's so expensive?? Because you guys love wasting it! 96 chars of pure optimization
https://t.co/DhxWOjAwsr
You got me @marioballano , I caved. #ESIL does all the dirty work here (=[8]/=[4]/=[2] pokes for the frame), no procfs anywhere. 173 < 175. Ball's in your court 🎾 https://t.co/Y7oajN2gjR @radareorg@trufae#RE
Anouncing r2hermes 1 3.2! The plugin for reverse engineering React Native apps with #radare2
Added SBOM listings, improved decompiler output, better overlapped strings support as well as much better SLP objects integration with latest radare2 from git! https://t.co/2ZpLw1LhTv
📢 Pick a chance to discover @_reversense_ internals⚔️, the logical - open source pro grade - suite of #Dexcalibur. A re-engineering automation platform for mobile & embedded binaries or system. The union of devices, dynamic stuff, @fridadotre , decompilers (@radareorg, ..) with a clean UI.
@enovella_@xMagass@0xabc0@EmericNasi #android #owasp #mobilesecurity
Malware Analysis
1. Volatility— Memory forensics framework for extracting digital artifacts from RAM dumps
2. Volatility3— Next-generation rewrite of Volatility with improved plugin architecture and Python 3 support
3. Radare2— Reverse engineering framework also widely used for malware static/dynamic analysis
4. YARA— Pattern-matching tool for identifying and classifying malware samples based on textual or binary signatures
5. Cuckoo Sandbox— Automated sandbox system for dynamic malware analysis in isolated environments
6. CAPE Sandbox— Cuckoo fork with enhanced capabilities for detecting modern threats and config extraction
7. FLOSS — Automatic string extractor for malicious binaries; finds hidden/obfuscated strings without full decompilation
8. Procmon (Process Monitor)— Windows utility from Microsoft for real-time monitoring of file system, registry, and process activity
9. Autorun Microsoft Sysinternals tool for inspecting Windows auto-start locations and persistence mechanisms
10. PEStudio Static analysis tool for Windows PE files; highlights suspicious indicators without executing the sample
11. Detect It Easy (DiE) File identifier for detecting packers, compilers, linkers, and file signatures
12. Exeinfo PE PE file analyzer for identifying packers, compilers, and entry point characteristics
#Analysis #Malware #Windows #Tools
#InfoSec #CyberSecurity #ReverseEngineering #ThreatIntel #MalwareResearch #SecurityTools #Forensics #BlueTeam #RedTeam #MrRobot #CyberSec
En 30 minutos arrancan las VI Jornadas STIC & Congreso RootedCON República Dominicana, bajo el lema “Un escudo digital contra las ciberamenazas”
Todo listo para unas jornadas apasionantes en las que compartir conocimientos y experiencias de la mano del @CCNCERT y @rootedcon .
A las 11:50 comienza el taller de ingeniería inversa & exploiting con @radareorg como herramienta destacada
#STICDOMINICANA #RootedCON #Ciberseguridad
Más info👉 https://t.co/DYjCrdTl7c
r2mcp 1.8.2 is out, relevant changes are:
- http server mode from the r2 plugin
- more tool tags like exec and session
- bearer token auth for multi agent support
- improved regex and filtering capabilities for large outputs
- new run_script tool
https://t.co/y1nW7UeSJd