Flag: Tornado! Hurricane!

Blogs >> oleavr's Blog

Created: Friday, October 24 2014 07:33.24 CDT Modified: Friday, October 24 2014 07:34.30 CDT
Direct Link, View / Make / Edit Comments
Anatomy of a code tracer
Author: oleavr # Views: 12841

Just wrote a blog post about the code tracer behind CryptoShark:
https://medium.com/@oleavr/anatomy-of-a-code-tracer-b081aadb0df8

This blog post is an attempt to demystify the implementation and make it easier for others to dive in.

Enjoy!

Created: Wednesday, August 27 2014 17:10.54 CDT  
Direct Link, View / Make / Edit Comments
CryptoShark: code tracer based on dynamic recompilation
Author: oleavr # Views: 32403

Here's a 43 second screencast showing it in action:
https://www.youtube.com/watch?v=hzDsxtcRavY

Source code and links to binaries available here:
https://github.com/frida/cryptoshark

Enjoy!

Created: Wednesday, June 25 2014 18:38.51 CDT  
Direct Link, View / Make / Edit Comments
Build a debugger in 5 minutes
Author: oleavr # Views: 10591

Just wrote a tutorial showing how to use Frida and Qml to build a debugging tool:

https://medium.com/@oleavr/build-a-debugger-in-5-minutes-1-5-51dce98c3544

Created: Thursday, April 17 2014 11:18.20 CDT  
Direct Link, View / Make / Edit Comments
frida.re 1.2.0 is out, with brand new ARM64 support
Author: oleavr # Views: 71381

Have a look at the release notes here, or just go ahead and get it at www.frida.re. Enjoy!

Created: Saturday, December 21 2013 13:15.29 CST Modified: Wednesday, January 29 2014 12:30.37 CST
Direct Link, View / Make / Edit Comments
frida.github.io: scriptable reversing tool for Windows, Mac, Linux and iOS
Author: oleavr # Views: 84654

Have a look here to get a rough idea what it's all about. Full JavaScript API reference here. Get the latest binaries here (updated automatically by Frida's buildbot).


Archived Entries for oleavr
Subject # Views Created On
Live x86 Code Instrumentation with Frida 13595     Monday, July 19 2010
oSpy is back 8172     Thursday, August 20 2009
Stressful but interesting days 11987     Wednesday, September 27 2006
MSNP15 authentication scheme REd 72887     Sunday, September 24 2006
oSpy 1.8.2 -- all your hashes are belong to us 7704     Saturday, September 23 2006
oSpy 1.8.1 released 7705     Friday, September 15 2006
oSpy released 6144     Wednesday, September 13 2006

There are 30,995 total registered users.


Recently Created Topics
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Immunity Debugger Re...
Aug/03
Question about memor...
Dec/12
How can i find conne...
Nov/27


Recent Forum Posts
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n
OOP_RE tool available?
van7hu
Should binaries be n...
Kolisar
Problem with ollydbg
nullx42
!findtrampoline Immu...
skycrack


Recent Blog Entries
nieo
Mar/22
Android Application Reversing

halsten
Mar/14
Breaking IonCUBE VM

oleavr
Oct/24
Anatomy of a code tracer

hasherezade
Sep/24
IAT Patcher - new tool for ...

oleavr
Aug/27
CryptoShark: code tracer ba...

More ...


Recent Blog Comments
nieo on:
Mar/22
IAT Patcher - new tool for ...

djnemo on:
Nov/17
Kernel debugger vs user mod...

acel on:
Nov/14
Kernel debugger vs user mod...

pedram on:
Dec/21
frida.github.io: scriptable...

capadleman on:
Jun/19
Using NtCreateThreadEx for ...

More ...


Imagery
SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit