Debuggers

Question 1

OllyDbg

Answer 1

was an x86 debugger that emphasizes binary code analysis, which is useful when source code is not available. It traces registers, recognizes procedures, API calls, switches, tables, constants and strings, as well as locates routines from object files and libraries.

Question 2

Immunity Debugger

Answer 2

a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry’s first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility.

Question 3

GNU Debugger

Answer 3

a powerful source-level debugging package that lets you see what is going on inside your program.

Question 4

WinDbg

Answer 4

a debugger that can be used to analyze crash dumps, debug live user-mode and kernel-mode code, and examine CPU registers and memory.

Question 5

Interactive Disassembler (IDA)

Answer 5

disassembler for computer software which generates assembly language source code from machine-executable code.

Question 6

Covenant

Answer 6

ommand and control framework that aims to highlight the attack surface of .NET, make the use of offensive .NET tradecraft easier, and serve as a collaborative command and control platform for red teamers.

Question 7

SearchSploit

Answer 7

a command line search tool for Exploit-DB that
also allows you to take a copy of Exploit Database with you,
everywhere you go. SearchSploit gives you the power to perform
detailed off-line searches through your locally checked-out copy of
the repository. This capability is particularly useful for security
assessments on segregated or air-gapped networks without
Internet access.