my software
Creating CMD.XLS
xor-kpa.py: XOR Known-Plaintext Attack
SpiderMonkey: Dump
CMD.EXE: Backup Privilege
I modified ReactOS’ cmd.exe to enable and use the backup privilege.
cmd-dll_v0_0_3.zip (https)
MD5: 88FB19DCB612F588CAF7508232F64DDE
SHA256: 111458061018D9133347D56CE9E58ADBC7CA167AD69E04F8036DFD5008ADEA99
oledump.py –extra
I’m adding option –extra to all my dump tools. This allows you to add extra information to the output of the dump tools, like MD5, SHA256, …
byte-stats.py
Demoing my byte-stats.py tool.
Wireshark Hex Import
Demoing Wireshark’s “Import from Hex Dump” feature. And using my 010 Editor script to help you create hex dumps Wireshark will accept.
http://blog.didierstevens.com/2014/06…
Cut Cut Cut …
Demoing the new –cut option in my dump tools like oledump.py
FindWritableFiles
A new DLL that can find files writable by a given user.
Didier Stevens Videos 