Malcat is a feature-rich hexadecimal editor / disassembler for Windows and Linux targeted to IT-security professionals. Inspect dozens of binary file formats, dissassemble and decompile different CPU architectures, extract embedded files and scan for Yara signatures or anomalies in a fast and easy-to-use graphical interface. Don't like what you get? Malcat is also heavily customizable and scriptable using python.
A powerful disassembler and a versatile debugger IDA Pro as a disassembler is capable of creating maps of their execution to show the binary instructions that are actually executed by the processor in a symbolic representation (assembly language). Advanced techniques have been implemented into IDA Pro so that it can generate assembly language source code from machine-executable code and make this complex code more human-readable.
The debugging feature augmented IDA with the dynamic analysis. It supports multiple debugging targets and can handle remote applications. Its cross-platform debugging capability enables instant debugging, easy connection to both local and remote processes and support for 64-bit systems and new connection possibilities.
No Malcat videos yet. You could help us improve this page by suggesting one.
Based on our record, IDA should be more popular than Malcat. It has been mentiond 11 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
If the DLL exports at least one function (which should be the case), you can look in the ExportDirectory structure of the dll (using CFF explorer or malcat), there is a field at offset 0xC which is a RVA to the DLL's name. Source: about 2 years ago
Did you try https://malcat.fr ? The free edition seems to check all your boxes. Source: about 2 years ago
If you're into bin diffing, you can give malcat a try. Its diff algorithm is also based on Meyer's algorithm so it can realign, and its view modes let you compare structures as well as code or bytes. Diff mode is only available in paid version though, but the price is fair. Source: about 2 years ago
The tool used in those white screenshots is called IDA pro, a decompiler. https://hex-rays.com/ida-pro/. - Source: Hacker News / 24 days ago
Learn assembly and then fuck around with https://hex-rays.com/ida-pro/. Gonna take you a week max. Source: 5 months ago
To RE the executable IDA Pro can be very useful: Https://hex-rays.com/ida-pro/. Source: about 1 year ago
It’s a good disassembler that is fairly expensive. https://hex-rays.com/ida-pro/. - Source: Hacker News / over 1 year ago
It's a disassembler, widely used for creating, for example, cracks/executable patches for games. https://hex-rays.com/ida-pro/. - Source: Hacker News / over 1 year ago
pestudio - pestudio is a tool allowing to statically analyze malicious files.
Ghidra - Software Reverse Engineering (SRE) Framework
PE-bear - PE-bear is a reversing tool for PE files.
OllyDbg - OllyDbg is a 32-bit assembler level analysing debugger.
X64dbg - X64dbg is a debugging software that can debug x64 and x32 applications.
HxD - HxD is a carefully designed and fast hex editor which, additionally to raw disk editing and...