- Sponsored Advertisement -
Welcome to the UnKnoWnCheaTs - Multiplayer Game Hacks and Cheats.
You have to register
General Software reviews help tutorials
You are Unregistered, please register
HookShark BETA 0.9 (with a vengeance)
#1 n00bie Join Date: Aug 2010
Posts: 22
Reputation: 8695 Rep Power: 104
Last Achievements HookShark BETA 0.9 (with a vengeance)
It has been one month only, and here i come with another big update.
And yes, it's worth it.
I am doing a quick overview of what has changed.
I am introducing the first tool that detects Hooks of VTables.
It does so by tracing certain assembly patterns and relocated blocks in the data section, that might be a table of virtual method-pointers.
If you set the verbosity high HookShark will also list all changed relocated function ptrs. in data sections.
Also all found global instances of polymorphic classes with VTables are listed in one section for your convinience to ease the analysis of your target.
So feel free to test around some stuff. HookShark might not find all virtual function tables. But this is hardly avoidable.
Next up is the new built-in Disassembler. Not much functionality. Just to grant a quick look at the area, if this is something worth exploring further with a debugger.
Some targets might fuck with us, guarding pages or even the modulelists. Also time-attacks to detect thread suspensions is a common technique.
So if the target crashes on scan or doesn't seem to be scannable, play around with the new Troubleshooting options in the Global Options Tab.
Also check out the new Credits Dialog. I included the old Chiptune, that you might know from 0.6.
Abso insisted on testing out the new bug-tracking system. So if you want to report bugs, then try it out:
HookShark - GameDeception - A Development Site for Reverse Engineering - Projects
I don't know if i will use it. But it doesn't hurt to check it put. If you want to be extra sure, mention the bug here in this thread.
PS: Yeah i know. The pictures show version "0.8" :P
That's because im lazy to make new pictures.
Download:
http://www.ucdownloads.com/downloads...=5489&act=down
Changelog:
09-02-2010 - 1 -- Fixed memory leak. Thx to MiDoX
Last edited by DeepBlueSea; 09-02-2010 at 06:56 PM .
DeepBlueSea is offline
#2 It's Ram Hot
Join Date: May 2007
Location: England
Posts: 1,125
Reputation: 18500 Rep Power: 265
Quote:
Originally Posted by
DeepBlueSea ...
Hey Sweetie,
Your such a naughty boy for using off-site links! I'm going to download, scan, and upload the uc-downloads database...
Anyway, nice as always and +rep! <3
Regards,
- Quicktime
Edit: Approved, DL here:
http://www.ucdownloads.com/downloads...o=file&id=5480
File name: HookShark.rar
Submission date: 2010-09-01 22
13 (UTC)
Current status: finished
Result: 0/ 43 (0.0%)
PHP Code:
Antivirus Version Last Update Result
- V3 2010.09.01.01 2010.09.01 -
AntiVir 8.2.4.46 2010.09.01 -
Antiy - AVL 2.0.3.7 2010.09.01 -
Authentium 5.2.0.5 2010.09.01 -
Avast 4.8.1351.0 2010.09.01 -
Avast5 5.0.594.0 2010.09.01 -
AVG 9.0.0.851 2010.09.01 -
BitDefender 7.2 2010.09.01 -
CAT - QuickHeal 11.00 2010.09.01 -
ClamAV 0.96.2.0 - git 2010.09.01 -
Comodo 5938 2010.09.01 -
DrWeb 5.0.2.03300 2010.09.01 -
Emsisoft 5.0.0.37 2010.09.01 -
eSafe 7.0.17.0 2010.09.01 -
eTrust - Vet 36.1.7831 2010.09.01 -
F - Prot 4.6.1.107 2010.09.01 -
F - Secure 9.0.15370.0 2010.09.01 -
Fortinet 4.1.143.0 2010.09.01 -
GData 21 2010.09.01 -
Ikarus T3.1.1.88.0 2010.09.01 -
Jiangmin 13.0.900 2010.08.30 -
K7AntiVirus 9.63.2406 2010.08.31 -
Kaspersky 7.0.0.125 2010.09.01 -
McAfee 5.400.0.1158 2010.09.01 -
McAfee - GW - Edition 2010.1B 2010.09.01 -
Microsoft 1.6103 2010.09.01 -
NOD32 5416 2010.09.01 -
Norman 6.05.11 2010.09.01 -
nProtect 2010 - 09 - 01.01 2010.09.01 -
Panda 10.0.2.7 2010.09.01 -
PCTools 7.0.3.5 2010.09.01 -
Prevx 3.0 2010.09.02 -
Rising 22.63.02.04 2010.09.01 -
Sophos 4.56.0 2010.09.01 -
Sunbelt 6823 2010.09.01 -
SUPERAntiSpyware 4.40.0.1006 2010.09.01 -
Symantec 20101.1.1.7 2010.09.01 -
TheHacker 6.5.2.1.360 2010.09.01 -
TrendMicro 9.120.0.1004 2010.09.01 -
TrendMicro - HouseCall 9.120.0.1004 2010.09.01 -
VBA32 3.12.14.0 2010.09.01 -
ViRobot 2010.8.31.4017 2010.09.01 -
VirusBuster 12.64.13.0 2010.09.01 -
Additional information
: 4ad07ba33a04a2c3e7a584ad6f062bdb
: 7b0ed73521568baa95fbddf52d97bbb25ab6ccb4
: b2ff0d55c070ef731b8a2baaa3eeadbac57cc82025cb4cd5cd84378cb6498395
Last edited by Quicktime; 09-01-2010 at 11:25 PM .
Quicktime is offline
#3 « Forum Admin »
Join Date: Nov 2004
Posts: 3,163
Reputation: 85707 Rep Power: 1009
great release, keep up the awesome work DeepBlueSea.
Winslow is online now
#4 Join Date: Jul 2009
Posts: 1,069
Reputation: 49844 Rep Power: 551
Neato update + Quality softwarez
__________________
Shad0w_'s Alter Ego
disavow is online now
#5 *_*
Join Date: Apr 2008
Location: H.M.P
Posts: 5,438
Reputation: 92853 Rep Power: 1083
i had a test when you included other dl link.
__________________
┌∩ ┐(◕ _ ◕ ) ┌∩ ┐
°º¤ø„¸ ¨°º¤ø„¸¸„ø¤º°¨ ¸„ø¤º°¨ ¨°º¤ø„¸ MONKEY „ø¤º°¨ „ø¤º°¨ FOREVER `°º¤ø.. .
xTc charging me up like a battery, Like 1000 volts rushing through my body
HOOAH07 is online now
#6 Retired Admin Join Date: Sep 2006
Posts: 5,249
Reputation: 93628 Rep Power: 1106
very nice
learn_more is offline
#7 Donator
Join Date: Nov 2007
Posts: 1,494
Reputation: 72055 Rep Power: 802
Nice release DeepBlueSea! vtable detection is very nifty.
__________________
raiders is offline
#8 Moderator
Join Date: Nov 2009
Posts: 254
Reputation: 5217 Rep Power: 85
Last Achievements I love this program, saves alot of time, thanks alot DeepBlueSea
Little is online now
#9 Affiliate VIP
Join Date: Aug 2007
Posts: 2,491
Reputation: 73953 Rep Power: 843
Nice job, will try it out
__________________
zoomgod is offline
#10 ٩(͡๏̯͡๏)۶
Join Date: Feb 2006
Posts: 223
Reputation: 40706 Rep Power: 484
Nicely done! this tool is very handy
keep up the good work!
+rep
batfitch is online now
#11 Join Date: Dec 2009
Posts: 361
Reputation: 2804 Rep Power: 61
Last Achievements awsome job, i was about to ask why the old version cant detect vtable hooks
Last edited by Anddos; 09-03-2010 at 12:46 AM .
Anddos is online now
#12 n00bie
Threadstarter Join Date: Aug 2010
Posts: 22
Reputation: 8695 Rep Power: 104
Last Achievements I fixed a memory leak.
Here is the new link:
Hookshark 0.9 FIX
PS: Seriously. Only use my rapidshare-links to be up 2 date. :P
Last edited by learn_more; 09-02-2010 at 08:32 PM .
Reason: url
DeepBlueSea is offline
#13 Join Date: May 2010
Location: between 0 and 1
Posts: 72
Reputation: 4142 Rep Power: 64
Last Achievements very nice release, keep it up!
freitag is online now
#14 Retired Admin Join Date: Sep 2006
Posts: 5,249
Reputation: 93628 Rep Power: 1106
'HookShark.exe' scan result: 0 /43 (0.0%) Code:
Antivirus Version Last Update Result
AhnLab-V3 2010.09.02.05 2010.09.02 -
AntiVir 8.2.4.46 2010.09.02 -
Antiy-AVL 2.0.3.7 2010.09.02 -
Authentium 5.2.0.5 2010.09.02 -
Avast 4.8.1351.0 2010.09.02 -
Avast5 5.0.594.0 2010.09.02 -
AVG 9.0.0.851 2010.09.02 -
BitDefender 7.2 2010.09.02 -
CAT-QuickHeal 11.00 2010.09.02 -
ClamAV 0.96.2.0-git 2010.09.02 -
Comodo 5948 2010.09.02 -
DrWeb 5.0.2.03300 2010.09.02 -
Emsisoft 5.0.0.37 2010.09.02 -
eSafe 7.0.17.0 2010.09.01 -
eTrust-Vet 36.1.7832 2010.09.02 -
F-Prot 4.6.1.107 2010.09.01 -
F-Secure 9.0.15370.0 2010.09.02 -
Fortinet 4.1.143.0 2010.09.02 -
GData 21 2010.09.02 -
Ikarus T3.1.1.88.0 2010.09.02 -
Jiangmin 13.0.900 2010.08.30 -
K7AntiVirus 9.63.2424 2010.09.02 -
Kaspersky 7.0.0.125 2010.09.02 -
McAfee 5.400.0.1158 2010.09.02 -
McAfee-GW-Edition 2010.1B 2010.09.02 -
Microsoft 1.6103 2010.09.02 -
NOD32 5419 2010.09.02 -
Norman 6.05.11 2010.09.02 -
nProtect 2010-09-02.01 2010.09.02 -
Panda 10.0.2.7 2010.09.02 -
PCTools 7.0.3.5 2010.09.02 -
Prevx 3.0 2010.09.02 -
Rising 22.63.03.03 2010.09.02 -
Sophos 4.57.0 2010.09.02 -
Sunbelt 6825 2010.09.02 -
SUPERAntiSpyware 4.40.0.1006 2010.09.02 -
Symantec 20101.1.1.7 2010.09.02 -
TheHacker 6.5.2.1.361 2010.09.02 -
TrendMicro 9.120.0.1004 2010.09.02 -
TrendMicro-HouseCall9.120.0.1004 2010.09.02 -
VBA32 3.12.14.0 2010.09.02 -
ViRobot 2010.8.31.4017 2010.09.02 -
VirusBuster 12.64.15.0 2010.09.02 - MD5...: 97aa51afd4e838eebb9f7d79e5787df6 Original scan result 'BeaEngine.dll' scan result: 0 /41 (0.0%) Code:
Antivirus Version Last Update Result
a-squared 4.5.0.48 2010.01.09 -
AhnLab-V3 5.0.0.2 2010.01.09 -
AntiVir 7.9.1.130 2010.01.08 -
Antiy-AVL 2.0.3.7 2010.01.08 -
Authentium 5.2.0.5 2010.01.09 -
Avast 4.8.1351.0 2010.01.09 -
AVG 8.5.0.430 2010.01.04 -
BitDefender 7.2 2010.01.10 -
CAT-QuickHeal 10.00 2010.01.09 -
ClamAV 0.94.1 2010.01.09 -
Comodo 3514 2010.01.08 -
DrWeb 5.0.1.12222 2010.01.09 -
eSafe 7.0.17.0 2010.01.07 -
eTrust-Vet 35.2.7226 2010.01.08 -
F-Prot 4.5.1.85 2010.01.09 -
F-Secure 9.0.15370.0 2010.01.09 -
Fortinet 4.0.14.0 2010.01.09 -
GData 19 2010.01.09 -
Ikarus T3.1.1.80.0 2010.01.09 -
Jiangmin 13.0.900 2010.01.09 -
K7AntiVirus 7.10.943 2010.01.09 -
Kaspersky 7.0.0.125 2010.01.10 -
McAfee 5856 2010.01.09 -
McAfee+Artemis 5856 2010.01.09 -
McAfee-GW-Edition 6.8.5 2010.01.09 -
Microsoft 1.5302 2010.01.10 -
NOD32 4757 2010.01.09 -
Norman 6.04.03 2010.01.09 -
nProtect 2009.1.8.0 2010.01.09 -
Panda 10.0.2.2 2010.01.09 -
PCTools 7.0.3.5 2010.01.09 -
Prevx 3.0 2010.01.10 -
Rising 22.29.05.04 2010.01.09 -
Sophos 4.49.0 2010.01.09 -
Sunbelt 3.2.1858.2 2010.01.09 -
Symantec 20091.2.0.41 2010.01.09 -
TheHacker 6.5.0.3.144 2010.01.09 -
TrendMicro 9.120.0.1004 2010.01.09 -
VBA32 3.12.12.1 2010.01.09 -
ViRobot 2010.1.8.2128 2010.01.08 -
VirusBuster 5.0.21.0 2010.01.09 - MD5...: 0d7739a0ee658abf9b2da869bd212af6 Original scan result
learn_more is offline
#15 Join Date: Mar 2010
Location: Germany
Posts: 942
Reputation: 40621 Rep Power: 448
Looks very nice i gonna try that out too ^^
Freeheadshot is online now
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
All times are GMT +1. The time now is 03:24 PM .
13 (UTC)
