#1
|
|||
|
|||
HASH/CRC signature in binary files ?
Is the any specific tool that could help in finding HASH/CRC signatures in binary files ? IDA or Ghidra scripts or standalone ?
Thanks, nathan |
#2
|
|||
|
|||
Hi
You can try Keygener Assistant, not found direct link for latest version, following link contains version 2.0.2: Quote:
BR, h4sh3m |
#3
|
|||
|
|||
Quote:
IDA signsrch SND Reverser tool v1.4 |
The Following User Says Thank You to Stingered For This Useful Post: | ||
nathan (02-16-2020) |
#4
|
|||
|
|||
Quote:
|
#5
|
|||
|
|||
have this http://prntscr.com/r2n22k
and this http://prntscr.com/r2n2em ping in case u need it |
#6
|
|||
|
|||
#7
|
||||
|
||||
https://www.connect-trojan.com/details.php?id=6668
__________________
Decode and Conquer |
The Following User Says Thank You to niculaita For This Useful Post: | ||
nathan (02-18-2020) |
#8
|
|||
|
|||
https://www.sendspace.com/file/ezq9it the license of this material is a real fun to read! check it out! |
#9
|
|||
|
|||
The Following User Says Thank You to Stingered For This Useful Post: | ||
nathan (02-18-2020) |
#10
|
|||
|
|||
Can you please share this v1.5b1? Thanks!
|
#11
|
|||
|
|||
Grab from HERE
|
The Following 2 Users Say Thank You to Stingered For This Useful Post: | ||
LordGarfio (04-02-2020), nathan (02-18-2020) |
#12
|
|||
|
|||
I am not sure the strategy used but are any of these tools capable of finding hashes by looking for entropy? Unlike machine code and normal data, only things like hashes and maybe GUIDs would seem to be random streams of bytes. Of course things like packed or encrypted files would likely throw such a detection method off but AFAIK it would throw all methods off.
|
#13
|
||||
|
||||
GUID
Usually GUID / UUID is not random, it may contain specific values at specific byte locations.
__________________
EnJoy! |
The Following User Says Thank You to Jupiter For This Useful Post: | ||
chants (02-18-2020) |
#14
|
|||
|
|||
Though not directly related, but you could try this as well to find crypted strings and values:
https://blog.didierstevens.com/programs/xorsearch/ Forgot to mention, the blog has many other useful utilities for geeks, check them as well. Last edited by Roy25; 02-18-2020 at 16:45. Reason: Adding value to post |
The Following User Says Thank You to Roy25 For This Useful Post: | ||
XorRanger (02-18-2020) |
#15
|
|||
|
|||
Quote:
__________________
We are on a quest to understand the inexplicable,break the unbreakable. This is our path,our eternal journey. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Flexlm 11.14 x86 signature, .til files | Vladimir | General Discussion | 1 | 10-01-2020 01:43 |