Software

Hello! On this page you’ll find some of the most common software packages I use, broken down by category for easier searching. It should be carefully noted that the links on the page may be outdated so if you try to visit one of these links and hit a dead end, try using the Wayback Machine or Google. All software mentioned here is free unless otherwise noted, although much of the free software listed here also has paid versions with additional features.

SRE Frameworks

• Ghidra: https://ghidra-sre.org/
• IDA Free: https://hex-rays.com/ida-free/
• Binary Ninja: https://binary.ninja/free/
• Cutter: https://cutter.re/
• dnSpy (.NET only): https://github.com/dnSpy/dnSpy
• WinDbg: https://learn.microsoft.com/en-us/windows-hardware/drivers/debugger/

Debuggers

• x86/x64dbg: https://x64dbg.com/
• ImmunityDbg: https://www.immunityinc.com/products/debugger/
• OllyDbg (32-bit only): https://www.ollydbg.de/

Anti-Anti-Debugger Tools

• SycllaHide (Kernel mode): https://github.com/x64dbg/ScyllaHide
• TitanHide (User mode): https://github.com/mrexodia/TitanHide

PE Dependency Analysis

• Dependency Walker: https://www.dependencywalker.com/
• PEview (32-bit only): http://wjradburn.com/software/

PE Cryptor/Packer Detection

• Detect It Easy (“D.I.E”): https://github.com/horsicq/Detect-It-Easy
• PEiD (outdated): https://www.softpedia.com/get/Programming/Packers-Crypters-Protectors/PEiD-updated.shtml

Networking Tools

• ApateDNS (DNS Spoofer): https://fireeye.market/apps/211380
• INetSim (Service Emulation): https://www.inetsim.org/downloads.html
• Wireshark: https://www.wireshark.org/

Registry Tools

• Regshot: https://sourceforge.net/projects/regshot/

Hex Editors

• HxD: https://mh-nexus.de/en/hxd/
• HexEd.it (browser only): https://hexed.it/

Import Table Reconstructors

• Scylla: https://github.com/NtQuery/Scylla

String Finders

• Strings: https://learn.microsoft.com/en-us/sysinternals/downloads/strings
• Strings: UNIX terminal command

.RSRC Section Dumpers

• Resource Hacker: https://www.angusj.com/resourcehacker/#download

Virtual Machines

• Oracle VirtualBox: https://www.virtualbox.org/wiki/Downloads
• VMWare Workstation Pro: https://www.vmware.com/products/workstation-pro/html.html

Misc Tools

• Sysinternals Suite: https://learn.microsoft.com/en-us/sysinternals/downloads/