Have you checked out the open-source Metasm framework? It is a ruby framework for assembly manipulation, and can compete with IDA's static analysis capabilities. PEBrowse64 Professional.
With the PEBrowse disassembler, one can open and examine any executable without the need to have it loaded as part of an active process with a debugger. Applications, system DLLs, device-drivers and Microsoft. The information is organized in a convenient treeview index with the major divisions of the PE file displayed as nodes. In most cases selecting nodes will enable context-sensitive multiple view menu options, including binary dump, section detail, disassembly and structure options as well as displaying sub-items, such as optional header directory entries or exported functions, that can be found as part of a PE file unit.
This is an awesome tool with a lot of useful feature regarding executable analysis and there is also a version that could be used and an interactive debugger. ODA the Online Disassembler supports a myriad of architectures and provides a basic feature set. You can enter binary data in the Live View and watch the disassembly appear as you type, or you can upload a file to disassemble.
A nice feature of this site is that you can share the link to the disassembly with others. ScratchABit stores program state in text files, allowing for easy information reuse and interfacing with other applications and scripts, or tracking history and working collaboratively using version control systems, and minimizing risk of database corruption and recovery efforts. The first tool that comes to mind is Hopper , which is no longer tied to OSX.
It has some debugging support at least on OSX , but focuses on static analysis, which seems like what you're looking for.
It has the ability to break basic blocks into a control flow graph, rudimentary decompilation support, and you can rename functions as you make sense of them. Perhaps someone who uses it instead of IDA will chime in with a better comparison, I've only played around briefly.
Sign up to join this community. The best answers are voted up and rise to the top. Stack Overflow for Teams — Collaborate and share knowledge with a private group. Create a free Team What is Teams? Learn more. Is there any disassembler to rival IDA Pro? Ask Question. Asked 8 years, 7 months ago. Active 10 months ago. Viewed k times. Improve this question. I don't know any tool for static analysis other than IDA.
However for live debugging there are many better alternatives, x64dbg being one of them. IDA's UI is clunky and lacking. Add a comment. Active Oldest Votes. Binary Ninja Binary Ninja is a reverse engineering platform. Hiew Hiew is a great disassembler designed for hackers, as the name suggests. ODA The Online Disassembler is a free web-based, reverse engineering platform that supports over 60 architectures and object file formats from all the major operating systems, including Windows, Mac OS X, Linux, and mobile platforms.
Improve this answer. Mick Mick 7, 3 3 gold badges 22 22 silver badges 38 38 bronze badges. I've always found it remarkably good to do this day, though it needs an update bad. I'm a bit surprised that ImmunityDebugger and OllyDbg are not part of this list. Is it because they are not multi-platforms? From my experience radare2 is much better than hopper.
Just use 'fresh' version at least 0. MickGrove: as much as I appreciate to learn about new tools others use, wasn't the question in particular about a contender for IDA as disassembler? Hopper is not available for Windows.
Show 11 more comments. Ange 6, 2 2 gold badges 25 25 silver badges 62 62 bronze badges. I think it's ironic that people think IDA is too expensive; it's not expensive enough, given its total addressable market. IDA's prices are so low that they artificially depress the market for all reverse engineering tools, which anchor or orbit around IDA's price point. It's an interesting business case study. Most interesting! I just do reversing for fun rather than profit, but Immunity and Hopper both look very impressive.
From my limited experience with OllyDbg, it was fantastic. It's more like Visual Studio than Sublime Text. It's not unheard of for a plugin to exceed the base price, is it?
Happens with graphics software I believe. SXX on Aug 7, prev next [—]. Cost of IDA is nothing. Actual problem is that you can't really buy it at all if you're not well-known expert or AV company employee. Plenty of people would be happy to buy it, but they can't. This is patently false. You can buy all HexRays products online. I'm confused as to why you're claiming this. To add yet another data point: Hex-Rays refused to sell IDA to me at first I quote: "Please contact us from your corporate email address for verification.
We do not deliver to free email accounts. I had to use my google. SXX on Aug 7, root parent prev next [—].
0コメント