Utilities - Uncategorized utilities

  •        1

Uncategorized utilities that do not need their own repository. Small dumb utility to port obvious function matches across two IDA databases.




Related Projects

ScratchABit - Easily retargetable and hackable interactive disassembler with IDAPython-compatible plugin API

ScratchABit is an interactive incremental disassembler with data/control flow analysis capabilities. ScratchABit is dedicated to the efforts of the OpenSource reverse engineering community (reverse engineering to produce OpenSource drivers/firmware for hardware not properly supported by vendors, for hardware and software interoperability, for security research). ScratchABit supports well-known in the community IDAPython API to write disassembly/extension modules.

Sark - IDAPython Made Easy

IDA Plugins & IDAPython Scripting Library. For documentation, see sark.rtfd.io.

python-idb - Pure Python parser and analyzer for IDA Pro database files (.idb).

python-idb is a library for accessing the contents of IDA Pro databases (.idb files). It provides read-only access to internal structures such as the B-tree (ID0 section), name address index (NAM section), and flags index (ID2 section). The library also provides analysis of B-tree entries to expose logical structures like functions, cross references, bytes, and disassembly (via Capstone). An example use for python-idb might be to run IDA scripts in a pure-Python environment. Willem Hengeveld (mailto:itsme@xs4all.nl) provided the initial research into the low-level structures in his projects pyidbutil and idbutil. Willem deserves substantial credit for reversing the .idb file format and publishing his results online. This project heavily borrows from his knowledge, though there is little code overlap.

gef - GEF - GDB Enhanced Features for exploit devs & reversers

GEF is a kick-ass set of commands for X86, ARM, MIPS, PowerPC and SPARC to make GDB cool again for exploit dev. It is aimed to be used mostly by exploiters and reverse-engineers, to provide additional features to GDB using the Python API to assist during the process of dynamic analysis and exploit development. It has full support for both Python2 and Python3 indifferently (as more and more distros start pushing gdb compiled with Python3 support).

EmbeddedXEN Virtualization Framework

EmbeddedXEN results from several Years of Research in the field of ARM-based CPUs and hypervisor technology based on XEN. The overall architecture has been revisited in order to support the hardware diversity of ARM CPUs platforms and provide an excellent framework to deal with a native OS and a third-party OS cross-compiled from a different ARM CPU. EmbeddedXEN provide a virtualized hardware interface to the third-party OS. EmbeddedXEN has been initiated and is under current development a

kali-arm-build-scripts - Kali Linux ARM build scripts

These scripts have been tested on a Kali Linux 32 and 64 bit installations only, after making sure that all the dependencies have been installed. Make sure you run the build-deps.sh script first, which installs all required dependencies.

arm-eabi-toolchain - Makefile & supporting patches/scripts to build a bare metal ARM EABI toolchain.

This toolchain builder builds a GCC and Newlib-based ARM EABI toolchain using the Sourcery CodeBench Lite sources. This Makefile was originally created to allow building a validated GCC release on Mac OS X, as CodeBench Lite / G++ Lite were only provided for Windows and Linux, but this build also includes some optimizations for Newlib that provide smaller binaries. NOTE: Mentor have indicated that there won't be future ARM EABI releases of the free Lite edition of CodeBench, so the 2014.05 release may be the last. You may also be able to use a modified version of this makefile with the sources Mentor provides with the Professional version of CodeBench (which they plan to continue supporting). If future source releases are made available, this Makefile will be updated for them. If not, we may start to build custom versions of other GCC/Newlib toolchain sources.

ffmpeg-iphone-build - Build scripts for building ffmpeg on iPhone

Build scripts for ffmpeg on iPhone SDK 3.0 (and iPhone Simulator SDK). The current ffmpeg trunk doesn't build with arm, so had to go back to r22404 in order to build arm targets. The i386 build does work on trunk (r22610) when I tried last.

bass - Make Bash utilities usable in Fish shell

Bass makes it easy to use utilities written for Bash in fish shell. Regular bash scripts can be used in fish shell just as scripts written in any language with proper shebang or explicitly using the interpreter (i.e. using bash script.sh). However, many utilities, such as virtualenv, modify the shell environment and need to be sourced, and therefore cannot be used in fish. Sometimes, counterparts (such as the excellent virtualfish) are created, but that's often not the case.


The goal of IDA-Pro-Code is to provide support for auditing applications including binary audits through extensions of the IDA Pro disassembler by DataRescue sa/nv and/or HexRays.com.

macops - Utilities, tools, and scripts for managing and tracking a fleet of Macintoshes in a corporate environment

These are some utilities, tools, and scripts for managing and tracking a fleet of Macintoshes in a corporate environment. We expect to use this primarily as a repository for small scripts or tools that don't warrant a standalone project.A nagging utility intended to provoke users into doing major OS upgrades.

Prolog Development Tools (ProDT)

ProDT is a Prolog Integrated Development Environment (IDE) aiming to be as rich in functionality as the Eclipse's java IDE, and to support any standard Prolog implementation. Currently is being supported SWI Prolog, B-Prolog and XSB Prolog

BugScam IDC Package

A bunch of IDC scripts for IDA to look for common programming flaws

amazon-redshift-utils - Amazon Redshift Utils contains utilities, scripts and view which are useful in a Redshift environment

Copyright 2014 Amazon.com, Inc. or its affiliates. All Rights Reserved.Amazon Redshift is a fast, fully managed, petabyte-scale data warehouse solution that uses columnar storage to minimise IO, provide high data compression rates, and offer fast performance. This GitHub provides a collection of scripts and utilities that will assist you in getting the best performance possible from Amazon Redshift.

libopencm3 - Open Source ARM cortex m microcontroller library

The libopencm3 project aims to create an open-source firmware library for various ARM Cortex-M microcontrollers. The library is written completely from scratch based on the vendor datasheets, programming manuals, and application notes. The code is meant to be used with a GCC toolchain for ARM (arm-elf or arm-none-eabi), flashing of the code to a microcontroller can be done using the OpenOCD ARM JTAG software.


This project contains scripts to test if clients or access points (APs) are affected by the KRACK attack against WPA2. For details behind this attack see our website and the research paper. Remember that our scripts are not attack scripts! You require network credentials in order to test if an access point or client is affected by the attack.

sslstrip - A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.


HCI for audiovisual live performance exploiting physical computing. Transform your standard musical instrument - electric bass, guitar, violin, piano etc - in an augmented tool, an audiovideo controller without exploiting any specific ext. hardware.

inception - Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA

Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA. The tool can attack over FireWire, Thunderbolt, ExpressCard, PC Card and any other PCI/PCIe HW interfaces. Inception aims to provide a relatively quick, stable and easy way of performing intrusive and non-intrusive memory hacks against live computers using DMA.

sslstrip - A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.

A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.