From Collaborative RCE Tool Library

Jump to: navigation, search

Crypto Tools


Tool name: Codetective Analysis Tool
Rating: 5.0 (1 vote)
Author: Francisco Gama Tabanez Ribeiro                        
Website: https://github.com/blackthorne/Codetective
Current version: 0.8.2
Last updated: September 20, 2014
Direct D/L link: N/A
License type: GPL
Description: Sometimes we run into hashes and other artefacts and can't figure out where did they come from and how they were generated. This tool is able to recognise the output format of many different algorithms in many different possible encodings for analysis purposes. It also infers the levels of certainty for each finding based on traces of its representation .

This may be useful e.g. when you are testing systems from a security perspective and are able to grab a password file with hashed contents maybe from an exposed backup file or by dumping memory. This may also be useful as a part of a fingerprinting process or simply to verify valid implementations of different algorithms. You may also try running this tool against network traffic captures or large source code repositories to look out for interesting stuff.

You can either use a generic version or as a plugin for the Volatility framework. The usage is similar.
Currently supports:
web-cookie
mssql2000
md5
URL
md4
phone number
credit cards
mssql2005
lm hash
ntlm hash
MySQL4+
MySQL323
base64
SAM(*:ntlm)
SAM(lm:*)
SAM(lm:ntlm)
RipeMD320
sha1
sha224
sha256
sha384
sha512
whirpool
CRC
des-salt-unix
sha256-salt-django
sha256-django
sha384-salt-django
sha384-django
sha256-salt-unix
sha512-salt-unix
apr1-salt-unix
md5-salt-unix
md5-wordpress
md5-phpBB3
md5-joomla2
md5-salt-joomla2
md5-joomla1
md5-salt-joomla1
blowfish-salt-unix
uuid
Also listed in: Crypto Libraries, Data Extraction Tools, Data Search and Extraction Tools, Dongle Analysis Tools, Dongle Crypto Solver Tools, Memory Data Tracing Tools, Memory Search Tools, String Finders
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: ExeInfo PE
Rating: 5.0 (1 vote)
Author: A.S.L.                        
Website: http://www.exeinfo.xn.pl
Current version: 0.0.4.1 with 902+35 signatures
Last updated: December 15, 2015
Direct D/L link: Locally archived copy
License type: Free
Description: Good detector for packers, compressors , compiler + unpack info + internal exe tools.
Internal Ripper for zip,rar,Flash swf,GFX-bmp/jpg/png/gif,cab,msi,bzip, ...
Colored Disassembler,Delphi Form viewer , .Zlib unpacker v1.2.8 , .NET exe info
Internal detector for non executable files.
Also listed in: .NET Tools, .NET Unpackers, Compiler Identifiers, Deobfuscation Tools, Linux Unpackers, PE EXE Signature Tools, Packer Identifiers
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: Keygener Assistant
Rating: 5.0 (3 votes)
Author: Mr Paradox                        
Website: http://www.at4re.com
Current version: Keygener Assistant v2.0.2
Last updated: May 11, 2012
Direct D/L link: Locally archived copy
License type: Free
Description: Descreption :
-------------
Keygener Assistant is a Full tool that combines several functions
to facilitate the task and save time during the analysis of an algorithm

-------------------------------------------------------------------------
Operations :
------------
+ BigNumbers Calculator
+ Conversion & Encoding
+ Hashing & CheckSum Calculator
+ Cryptography Operations
+ Hash & Crypto detector
+ System Information & System outils
Encoding  :
---------------------------------
Base2 Encode (String to Binary)
Base2 Decode (Binary to String)
Base10 Encode (String to Decimal)
Base10 Decode (Decimal to String)
Base16 Encode (String to Hex)
Base16 Decode (Hex to String)
Base32 Encode (String to Base32)
Base32 Decode (Base32 to String)
Base64 Encode (String to Base64)
Base64 Decode (Base64 to String)
Base91 Encode (String to Base91)
Base91 Decode (Base91 to String)
MIME32 Encode (String to MIME32)
MIME32 Decode (MIME32 to String)
MIME64 Encode (String to MIME64)
MIME64 Decode (MIME64 to String)
PGP Encode (String to PGP)
PGP Decode (PGP to String)
UUCODE Encode (String to Unix UU base 64)
UUCODE Decode (Unix UU base 64 to String)
XXCODE Encode (String to Unix XX base 64)
XXCODE Decode (Unix XX base 64 to String)
RFC1760 Encode (String to RFC1760 Format)
RFC1760 Decode (RFC1760 Format to String)
--------------------------------
CheckSums :
--------------------------------
Adler32
CRC-5
CRC-8
CRC8/Dallas-1-Wire
CRC-8/I-CODE
CRC-11
CRC-15
CRC-16
CRC-16/ATOM
CRC-16/AUG-2-CITT
CRC-16/AUG-CITT
CRC-16/BT-CHIP
CRC-16/BUYPASS
CRC-16/CITT
CRC-16/DNP
CRC-16/I-CODE
CRC-16/MCRF4XX
CRC-16/USB
CRC-16/KERMIT
CRC-16/MODBUS
CRC-16/R
CRC-16/X-25
CRC-16/X-KERMIT
CRC-16/ZMODEM'
CRC24/PGP
CRC-24/FLEXRAY-A
CRC-24/FLEXRAY-B
CRC32
CRC32b
CRC32/C
CRC-32/POSIX
CRC-32/JAMCRC
CRC-32/XFER
CRC64
XOR-16
XOR-32
--------------------------------
Hashes  :
--------------------------------
eDonkey/eMule
GOST
MD2
MD4
MD5
Haval-128 (Rounds 3/4/5)
Haval-160 (Rounds 3/4/5)
Haval-192 (Rounds 3/4/5)
Haval-224 (Rounds 3/4/5)
Haval-256 (Rounds 3/4/5)
Tiger-128 (Rounds 3/4/5)
Tiger-160 (Rounds 3/4/5)
Tiger-192 (Rounds 3/4/5)
Tiger-192
Panama
RIPEMD-128
RIPEMD-160
RIPEMD-256
RIPEMD-320
Sapphire II-128
Sapphire II-160
Sapphire II-192
Sapphire II-224
Sapphire II-256
Sapphire II-288
Sapphire II-320
Snefru-128
Snefru-256
Square
SHA-0
SHA-1
SAH-224
SAH-256
SAH-384
SAH-512
Whirlpool 0
Whirlpool 1
Whirlpool 512
--------------------------------
Symmetric Crypto :
--------------------------------
1DES
2DDES
2DES
3DDES
3DES
3TDES
3Way
AES (Rijndael)
Blowfish
Cast 128
Cast 256
GOST
ICE
ICE2
IDEA
Mars
Misty
NewDES
Q128
RC2
RC4
RC5
RC6
SAFER
Sapphire
SCOP
Shark
Square
Skipjack
Serpent
Tea
Thin ICE
TwoFish
xTea
xxTea
--------------------------------
Asymmetric Crypto :
--------------------------------
RSA
ElGamal
--------------------------------
What's New in v1.5:
-------------------------------------------------------------------------
Added File Hashing Function
Added more base converting for RSA & Elgamal
Added automatic converting between bases in BigNumbers Calculator
Added the ability to choose between several skins
Update Conversion & Encoding Function
Updated ElGamal Encrypt/Decrypt
Updated Hash & Crypto detector
Updated System Information
Various fixed crashes, and bugs.
-------------------------------------------------------------------------
What's New in version 1.6:
-------------------------------------------------------------------------
1-Calculator
------------
+ Used Thread for (P^Q) operation.
+ Update (Prime Test) Now More Fast.
2-Conversion
------------
- Added More Encoding Function :
+ Base91 Encode/Decode
+ MIME32 Encode/Decode
+ MIME64 Encode/Decode
+ PGP Encode/Decode
+ UUCODE Encode/Decode
+ XXCODE Encode/Decode
+ RFC1760 Encode/Decode
3-Hashing
------------
- Added Hash Brute Forcer Tabsheet.
4-Encryption
------------
- Added Classic Symetric Encryption :
+ Cesare : (Shift cipher E(x) = (x + R) mod 26 )
+ Vergenere : (Poly Alphabetic substitution)
+ ROT-n : (Rotate by n places)
+ PC1 : (Cipher with 128-bit keys)
+ Xoring : (XOR a String with the value of the key)
+ Adding : (ADD a String with the value of the key)
+ NOT : (Encrypt & Decrypt Used Command Not)
- Added RSA Generator & Solve Tabsheet.
+ Generate RSA Key (Bases(2,10,16) & Unlimited KeySize).
+ Fast Factorization Based to Msieve.
+ Calcule Private Exponent Key.
+ Automatic Conversion between bases.
- calculation of ElGamal signature (b) is Fixed.
- Added ElGamal Verifiy Signature Tabsheet.
5-Divers
----------
- Options (About Tabsheet) :
+ Added the possibility to custom the Font color.
+ Added the possibility to Add/Remove Scan Shell Extension.
- Various bugs fixed
-------------------------------------------------------------------------
What's New in version v 2.0
-------------------------------------------------------------------------
- Added BigFloat Calculator
- Added File Encryption Tabsheet
- Update BigNumber Calculator
- Update Convertor,
- Added Instant Base Convertor between(2,8,10,16,32,64,256)
- Added more Symetric Encryption.
- Added ActiveProcess in System Tab
- Some Bug Fixed.
- Update Skins
-------------------------------------------------------------------------
What's New in version v 2.0.2
-------------------------------------------------------------------------
- String & File Symetric Encryption :
+ Added Block Cipher Padding (PKCS#7, Zero Padding, ANSI X.923, ISO 10126, No Padding).
+ Added Encryption Modes ( ECB,CBC,CTS,CFB,OFB).
+ Added Key Hashing Possibility (MD5,SHA,GOST, Panama .... , No Hash)
+ Added Encryption & Statut Information (Key Length, Block Size..).
+ Used isolated Thread during File Encryption.
- Base Converter Interface Changed (for more simplicity to use).
- Bug Fixed in Prime Test.
-------------------------------------------------------------------
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: SnD Reverser Tool
Rating: 5.0 (1 vote)
Author: Loki & PuNkDuDe                        
Website: http://www.tuts4you.com/forum/index.php?showtopic=13596
Current version: 1.4 Final
Last updated: May 2008
Direct D/L link: http://www.tuts4you.com/download.php?view.1923
License type: Freeware
Description: A crypto utility tool, with many features.

Hashes include:
+ Adler32
+ Crc16, Crc32, Crc32b, Crc16ccitt
+ GOST
+ Panama
+ MD2, MD4, MD5
+ SHA0, SHA1,SHA256, SHA384, SHA512
+ RIPEMD128, RIPEMD160, RIPEMD256, RIPEMD320
+ SNEFRU
+ Tiger
+ Whirlpool
+ HAVAL 128/160/192/240/256 with 3/4/5 rounds

Encryptions:
+ Blowfish
+ Twofish
+ RC2, RC4, RC5, RC6
+ TEA, xTEA, xxTEA
+ UUCode & XXCode
+ AES/Rijndael
+ Cast128, Cast256
+ DES, Triple DES, DESNew
+ Mars
+ Skipjack

Base Conversions include:
+ Base2(Binary)
+ Base10(Decimal)
+ Base16(Hexadecimal)
+ Base32
+ Base64
+ hex input to Base32
+ hex input to Base64

Other Functions:
+ URLEncode and URLDecode
+ Reverse String
+ Uppercase
+ Lowercase
+ String ROT
+ String XOR
+ Caesar Bruteforce


Misc Tools:
+ PE File Crypto Scanner
+ Disabled Control
+ Flexible Hash Bruteforcer
+ Memo Tool (to keep track of current workings)
+ 512bit Calculator
+ Hash modification for hashes with dword sized initialisation vectors.


History:
--------

02.05.08 : SND Reverser Tool 1.4 Final : Public Release
Functions:
+ CRC16ccitt (Thanks UFO-Pu55y)
+ GOST Hash (Thanks UFO-Pu55y)
+ Panama Hash (Thanks UFO-Pu55y)
+ SNEFRU 128/256 Hashes (4/8 Rounds) (Thanks UFO-Pu55y)
+ URLEncode and URLDecode
Options:
+ Cleaned up the options menu
+ Autostrip spaces from input
+ Autostrip non hex chars from input
+ Autostrip non alpha numeric chars from input
+ Read Input as Hex
+ Read Key as Hex
+ Display Output as Hex
+ Display Output in Uppercase
+ Display Output if Unicode (thanks Sub Zer0)
+ Deep Red Colour Scheme
Fixes:
* thanks to syk071c who reported and then fixed a bug in the Blowfish encryption.
* fixed a further issue with Blowfish only encrypting/decrypting the first block of data.
* fixed crash with UUDecode when entering a single byte (thanks UFO-Pu55y).
* fixed crash in 512bit calculator when trying to bswap an empty input (thanks HVC)
* changed bruteforcer status field from DISABLED to READONLY to allow copying of solution (thanks ChupaChu)
Tools:
+ updated the crypto scanner tool to use updated signatures and engine as in the Olly/Immunity Plugins.
+ added "Export to .txt" and "Export as IDC" options to the crypto scanner (thanks HVC)
(and also thanks to kanal's writers whom the idea is obviously taken from)
* fixed minor cosmetic bugs in the crypto scanner (thanks HVC)
+ added ADLER32 initialisation vector to the hash modification tool.
+ added CRC16 initialisation vector to the hash modification tool.
+ added CRC16ccitt initialisation vector to the hash modification tool.
+ added CRC32 initialisation vector to the hash modification tool.
+ added CRC32b initialisation vector to the hash modification tool.
+ added GOST hash initialisation vectors to the hash modification tool.
+ added HAVAL hash initialisation vectors to the hash modification tool.
+ added PANAMA hash initialisation vectors to the hash modification tool.
+ added SHA384 hash initialisation vectors to the hash modification tool (implemented as 32bit vectors).
+ added SHA512hash initialisation vectors to the hash modification tool (implemented as 32bit vectors).
+ added SNEFRU hash initialisation vectors to the hash modification tool.
+ added TIGER hash initialisation vectors to the hash modification tool (implemented as 32bit vectors).
+ added WHIRLPOOL hash initialisation vectors to the hash modification tool (implemented as 32bit vectors).
+ added GOST to the hash brute force tool.
+ added PANAMA to the hash brute force tool.
+ added RIPEMD320 to the hash brute force tool.
+ added SHA384 to the hash brute force tool.
+ added SHA512 to the hash brute force tool.
+ added TIGER to the hash brute force tool.
+ added WHIRLPOOL to the hash brute force tool.


14.03.08 : SND Reverser Tool 1.4beta2 : Public Release
New Functions:
+ Panama Hash (Thanks UFO-Pu55y)
+ GOST Hash (Thanks UFO-Pu55y)
Fixes
* thanks to syk071c who reported and then fixed a bug in the Blowfish encryption.
* fixed crash with UUDecode when entering a single byte (thanks UFO-Pu55y for the report).
* fixed crash in 512bit calculator when trying to bswap an empty input.


18.01.08 : SND Reverser Tool 1.3 : Public Release
Fixes:
* minor bug fixes for the public build.


17.01.2008 : SND Reverser Tool 1.2.2 : Private Release
New Tools:
+ Improved Flexible Hash Bruteforcer
+ Added basic hash modification code for hashes with dword sized initialisation vectors. Others may
follow later if we get requests to include them.


11.01.2008 : SND Reverser Tool 1.2.1 : Private Release
New Tools:
+ Flexible Hash Bruteforcer


20.09.2007 : SND Reverser Tool 1.2 : Public Release
New Tools:
+ Memo Tool (to keep track of current workings)
+ 512bit Calculator


06.09.2007 : SND Reverser Tool 1.1 : Public Release
Fixes:
* Removed alpha blend option to enable the tool on Win98


29.08.2007 : SND Reverser Tool 1.0 : Public Release
+ minimise to tray option
+ minor GUI changes and fixes
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: CrypTool
Rating: 4.0 (1 vote)
Author: Deutsche Bank                        
Website: http://cryptool.de
Current version: 2.0 beta
Last updated:
Direct D/L link: N/A
License type: Free / Open Source
Description: The application CrypTool is a free e-learning application for Windows. You can use it to apply and analyze cryptographic algorithms. The current version of CrypTool is used all over the world. It supports both contemporary teaching methods at schools and universities as well as awareness training for employees and civil servants.

The current version offers beside others the following highlights:

* Numerous classic and modern cryptographic algorithms (encryption and decryption, key generation, secure passwords, authentication, secure protocols, ...)
* Visualisation of several methods (e.g. Caesar, Enigma, RSA, Diffie-Hellman, digital signatures, AES)
* Cryptanalysis of certain algorithms (e.g. Vigenère, RSA, AES)
* Crypt-analytical measuring methods (e.g. entropy, n-grams, autocorrelation)
* Auxiliary methods (e.g. primality tests, factorisation, base64 coding)
* Tutorial about number theory
* Comprehensive online help
* Supportive script with further information about cryptology

From its original use of information security training for a company, CrypTool has developed into an outstanding open source project for cryptology related topics.
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: OpenSSL libcrypto
Rating: 4.0 (1 vote)
Author: The OpenSSL Software Foundation                        
Website: http://openssl.org
Current version: 1.0.1e
Last updated: February 11, 2013
Direct D/L link: http://openssl.org/source/openssl-1.0.1e.tar.gz
License type: Free / Open Source (C)
Description: Very competent crypto library used in OpenSSL.

Online documentation at:

http://www.openssl.org/docs/crypto/crypto.html
Also listed in: Crypto Libraries
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: cryptlib
Rating: 0.0 (0 votes)
Author: Peter Gutmann (yeah, that lunatic)                        
Website: http://www.cs.auckland.ac.nz/~pgut001/cryptlib/
Current version: 3.3.1
Last updated: recent snapshots always available
Direct D/L link: http://www.cypherpunks.to/~peter/cl331.zip
License type: "GPL-compatible license", A.K.A. "Sleepycat license"...
Description: Besides very, very diverse and creative name, cryptlib comes with 400+ pages manual (...), and really fast implementations of common crypto primitives.
Also listed in: Crypto Libraries
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: Crypto++
Rating: 0.0 (0 votes)
Author: Wei Dai                        
Website: http://www.cryptopp.com
Current version: 5.5.2
Last updated: September 24, 2007
Direct D/L link: http://www.cryptopp.com/cryptopp552.zip
License type: Public Domain (!)
Description: Cross platform library with usual crypto primitives: Hashing algos, asymmetric and symmetric algorithms, MAC's and support for elliptic curve cryptography.
Also listed in: Crypto Libraries
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: ECCTool
Rating: 0.0 (0 votes)
Author: readyu                        
Website: http://www.tuts4you.com/download.php?view.2306
Current version: 1.04
Last updated: August 29, 2008
Direct D/L link: Locally archived copy
License type: Free
Description: Main fuctions:
1.generate curvers, computer np/order;
2.trap small ecdlp (< 64 bits), using kangaroo method;
3.generate keypairs.
4.ECDSA/ECNR sign/verify.

Support curves:
1. support curve bits: 32-1024;
2. support elliptic curve over GF(p);
3. support elliptic curve over GF(2^m), with irreducible ploy:
Trinomial: f(t)=t^m + t^a + 1,
Pentanomial: f(t) = t^m + t^a + t^b + t^c + 1
4. support NIST-recommended elliptic curves.
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: Hash & Crypto Detector
Rating: 0.0 (0 votes)
Author: Mr Paradox / AT4RE                        
Website: http://www.at4re.com
Current version: 1.4
Last updated: November 12, 2009
Direct D/L link: Locally archived copy
License type: Free
Description: * HCD detects most common Hash & crypto Algorithmes and compilers for PE files.
* It can currently detect more than 90 different signatures .
* HCD is special in some aspects when compared to other identifiers already out there!

############################################################################################

1. It has a superb GUI and the interface is really intuitive and simple.
2. The rate of detection is very good.
3. Shell integration, Command line support.
4. Always on top And Drag'n'Drop capabilities.
5. Extra scanning techniques used for even better detections.
6. Total Scan able to find duplicate signatures and determine the location VA.
7. Save Log allows you to choose the place of keeping or copying the result.

############################################################################################

What's new in version 1.4 :
============
1-Deep Methode Scan.
2-Scan Memory for a Packed & Protected Executables Files.
3-Detect compiler (New methode).
4-Detect Heuristic (Packers a Protectors Used).
5-Information for a cryptographic Functions.
6-New Interface & Skin.
7-Some Bugs fixed
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: MIRACL
Rating: 0.0 (0 votes)
Author: ShamusSoftware                        
Website: http://www.shamus.ie
Current version: 5.4
Last updated: July 18, 2009
Direct D/L link: ftp://ftp.computing.dcu.ie/pub/crypto/miracl.zip
License type: Free
Description: MIRACL is a Big Number Library which implements all of the primitives necessary to design Big Number Cryptography into your real-world application. It is primarily a tool for cryptographic system implementors. RSA public key cryptography, Diffie-Hellman Key exchange, DSA digital signature, they are all just a few procedure calls away. Support is also included for even more esoteric Elliptic Curves and Lucas function based schemes. The latest version offers full support for Elliptic Curve Cryptography over GF(p) and GF(2m) - see the links on this page for more details. Less well-known techniques can also be implemented as MIRACL allows you to work directly and efficiently with the big numbers that are the building blocks of number-theoretic cryptography. Although implemented as a C library, a well-thought out C++ wrapper is provided, which greatly simplifies program development. Most example programs (25+ of them) are provided in both C and C++ versions.

MIRACL now provides more support for conventional cryptography. The latest version implements the Advanced Encryption Standard (AES), Modes of Operation, and the new hashing standards SHA-160/256/384/512.

MIRACL is compact, fast and efficient and its now easier than ever to get the same near-optimal performance from any processor. Although essentially a portable library, inline assembly and special techniques can be invoked for blistering speed. MIRACL has also been successfully used in both embedded and DSP environments where space is at a premium. A new special purpose macro assembler feature facilitates the achievement of best possible performance from your embedded processor (see embedded.doc). MIRACL is, to an extent, self-configuring. Use your compiler to compile and run a simple configuration program, which proceeds with user interaction to generate optimal settings for your environment.
Also listed in: BigNum Libraries, Crypto Libraries
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: RSA-Tool 2
Rating: 0.0 (0 votes)
Author: tE!                        
Website: N/A
Current version: 1.7
Last updated: May 26, 2002
Direct D/L link: Locally archived copy
License type:
Description: RSA-Tool 2 Features:
- Secure keypair generation
- Key test dialog
- Support of multiple number bases
- Auto base-conversion on select
- Support of numbers up to 4096 Bits
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: SSL Key/Cert Finder
Rating: 0.0 (0 votes)
Author: Tobias Klein                        
Website: http://www.trapkit.de/research/sslkeyfinder/
Current version: 1.0
Last updated: February 5, 2006
Direct D/L link: Locally archived copy
License type: Free
Description: IDA plugin that finds and extracts SSL keys/certs from executables.
Also listed in: IDA Extensions
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: SnD Crypto Scanner (Olly/Immunity Plugin)
Rating: 0.0 (0 votes)
Author: Loki                        
Website: http://tuts4you.com/forum/index.php?showtopic=15447
Current version: 0.5 (beta)
Last updated: March 30, 2008
Direct D/L link: http://www.tuts4you.com/download.php?view.2222
License type: Freeware
Description: A scanner for crypto signatures as an Olly/Immunity Plugin:

(Following text from the forum thread)
Been coding this for a while and now kinda got bored with it so releasing it as a beta. Sure I'll go back to it again later... just need to do something else now.

Hopefully you will find this useful - the advantage of having it as a plugin means that breakpoints can easily be set where required, and signatures can be located quickly.


Setting Breakpoints:
The buttons try and use a little bit (not much :P) intelligence when setting breakpoints. In the data section, "hardware on access" or "memory access" breakpoints are set on the specific VA referenced. In the code section, a 'hardware on execution' breakpoint is set at the beginning of the disassembled line the referenced dword is on. Hope that makes a little sense :)


Limitations:
Signatures are either made up of dwords or byte sequences. This gives 2 main weaknesses:
- some algorithms use similar dwords, distinguishing between them is not always simple.
- the algorithm finds the first instance of a given dword in a signature. If you have code which has multiple algorithms which use some of the same dwords, the referenced VA will always point to the first instance in the file.

Without doing some in depth analysis, its impossible to determine which algorithm uses a specific instance of a dword. This tool is therefore only going to make analysis a little easier, not do it for you.


Future Development:
Currently the plugin uses the plugin API to get the current file name and then reads it into allocated memory. It does not read memory inside Olly. This means packed files will need to be unpacked and the unpacked instance debugged. In future I plan to give an option to either scan the file or memory (perhaps even a specified memory range).

If you have an idea for development, want to add signatures or just want to tell me how crap this is, please go for it :)
Also listed in: OllyDbg Extensions
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: TurboPower LockBox
Rating: 0.0 (0 votes)
Author: benoram, chaoticpup, fredhuffman & tpsfadmin                         
Website: http://sourceforge.net/projects/tplockbox
Current version: 2.07
Last updated: January 21, 2003
Direct D/L link: N/A
License type: Free / Open Source
Description: LockBox is a cross-platform toolkit for data encryption. It contains routines & components for use with Borland Delphi, C++Builder, & Kylix. It provides support for Blowfish, RSA, MD5, SHA-1, DES, triple- DES, Rijndael, & digital signing of messages.
Also listed in: Crypto Libraries
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: Ultra hash cracking tool
Rating: 0.0 (0 votes)
Author: Ulevel                        
Website: http://www.ulevel.cz
Current version: 1.40
Last updated: November 30, 2015
Direct D/L link: Locally archived copy
License type:
Description: This cryptoanalytic tool is created for cracking one way hash function algorithms.
The program also can be useful as hash calculator.

Ultra supports following hash algorithms:

•CRC32
•MD5
•SHA1
•SHA256
•SHA512
•HAVAL-3-128
•HAVAL-4-128
•HAVAL-5-128
•HAVAL-3-160
•HAVAL-4-160
•HAVAL-5-160
•HAVAL-3-192
•HAVAL-4-192
•HAVAL-5-192
•HAVAL-3-224
•HAVAL-4-224
•HAVAL-5-224
•HAVAL-3-256
•HAVAL-4-256
•HAVAL-5-256
•NTLM
•RIPEMD128
•RIPEMD160
•TIGER
•SNEFRU-4-128
•SNEFRU-4-256
•SNEFRU-8-128
•SNEFRU-8-256
•LMHash
•Whirlpool
•CRC16-CCITT
•GOST
•MYSQL
•MYSQL5
•eD2k
•PANAMA
•SHA3-224
•SHA3-256
•SHA3-384
•SHA3-512
•KECCAK224
•KECCAK256
•KECCAK384
•KECCAK512
•MD4
•MD2
•SHA224
•SHA384
•BLAKE224
•BLAKE256
•BLAKE384
•BLAKE512




Program uses bruteforce with different charsets and also random attack.
Exclusive option of this software is also ultrafast dictionary attack.

Release notes:

Since November 23, 2015 version 1.39s is available and contains variable salt string edit box. This version is available on the Website.

Since version 1.38 the program accepts zero length messages also as a Max. value (Min. = 0; Max. =0) to generate only zero length message.

Since version 1.31 Ultra handles zero length messages in brute force options (All combinations).

Program is tested in Windows 7/8.1/10.
Also listed in: (Not listed in any other category)
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)


RSS feed Feed containing all updates and additions for this category.

RSS feed Feed containing all updates and additions for this category, including sub-categories.


Subcategories

There is one subcategory to this category.





Views
Category Navigation Tree
   Needs New Category  (3)