Exetools  

Go Back   Exetools > General > Community Tools
Reload this Page Baymax toOls for x64dbg v1.9
Register Forum Rules FAQ Calendar Mark Forums Read

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 08-22-2023, 20:00
Nisy's Avatar
Nisy Nisy is offline
Family
  
Join Date: Jan 2023
Posts: 10
Rept. Given: 0
Rept. Rcvd 17 Times in 5 Posts
Thanks Given: 1
Thanks Rcvd at 110 Times in 9 Posts
Nisy Reputation: 17
Talking Baymax toOls for x64dbg v1.9
BaymaxTools is a feature code extraction and search plug-in for x64dbg debugger. The main functions are:

1. parsing assembly instructions and extracting corresponding feature codes according to user's settings. 2;
2. process memory can be quickly searched for feature code entries (6 to 10 times faster than ordinary memory search tools) ;
3. better parsing of the memory space of the process being debugged (better than x64dbg), including parsing shadowDll, and more convenient memory search by type;
4. support for searching assembly instructions, and compiled instructions can be converted to feature code for searching;
5. support for searching for strings (UNICODE\ASCII\UTF-8);
6. can search for VM-protected instructions;

Update:
Baymax toOls for x64dbg v1.9
2023.08.20

1. Optimize the search algorithm, faster speed!
2. Add the module list refresh function in the search window, if there is any change in process memory data or modules, you can refresh it and search again.
3. The search window supports the search of assembly instructions.
3.1> Input values will be treated as hexadecimal (without '0x' prefix or 'h' suffix).
3.2>The first line selected in the assembly window will be used as the starting address for instruction compilation
3.3>Due to different compilation modes, ModR/M (default engine) can be checked if the result is not as expected.
3.4>You can search the result of compiling assembly instructions into feature codes in the settings.
4. the search window supports the search of strings, can be set to not match the case, the default option at the same time to search for strings of UNICODE \ ASCII \ UTF-8 three kinds of encoding.
5. right-click menu to search for shelled tools (themida, vmprotect, obsidium, enigma ...) VM-protected code can be parsed for cross-section commands.
5.1>Parsing list of code segments belonging to the original program contains entry addresses of code suspected to be protected by VM.
Fix some bugs

Download:
https://github.com/sicaril/BaymaxTools // maybe 404
New:
https://sourceforge.net/projects/baymax-tools-for-x64dbg
Attached Files
File Type: zip Baymax toOls for x64dbg v1.9.zip (996.2 KB, 3 views)
Last edited by Nisy; 09-20-2023 at 10:35.
Reply With Quote
The Following User Gave Reputation+1 to Nisy For This Useful Post:
user1 (08-23-2023)
The Following 19 Users Say Thank You to Nisy For This Useful Post:
amabm (08-30-2023), Apuromafo (08-24-2023), besoeso (08-22-2023), canopus (09-19-2023), Doit (08-25-2023), Dxer (09-09-2023), Fragrance (09-03-2023), gagmeng (09-07-2023), LordGarfio (08-23-2023), niculaita (08-24-2023), nig (09-18-2023), tonyweb (08-23-2023), Top10 (08-30-2023), user1 (08-23-2023), user_hidden (08-23-2023), Vosiyons (08-23-2023), wgz001 (09-07-2023), wilson bibe (08-23-2023), Zeokat (08-24-2023)
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


All times are GMT +8. The time now is 17:45.

Aaron's homepage - Top

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2023 )