工具来帮助进行反向工程二进制文件格式 [英] Tools to help reverse engineer binary file formats

问题描述

有什么工具可以解码未知的二进制数据格式，以帮助？

我知道六角车间和010编辑器都支持结构。这些都是好为已知的固定格式，在有限的程度，但很难得到任何东西更复杂，尤其是对于未知的格式中使用。我想我在寻找一个脚本语言或脚本化的GUI工具的模块。

I know Hex Workshop and 010 Editor both support structures. These are okay to a limited extent for a known fixed format but get difficult to use with anything more complicated, especially for unknown formats. I guess I'm looking at a module for a scripting language or a scriptable GUI tool.

例如，我希望能够从有限的已知的信息，也许是一个神奇的数字数据块中找到的结构。一旦我找到了一个结构，然后按照已知长度和偏移话找其他结构。在有意义然后递归迭代和重复这一点。

For example, I'd like to be able to find a structure within a block of data from limited known information, perhaps a magic number. Once I've found a structure, then follow known length and offset words to find other structures. Then repeat this recursively and iteratively where it makes sense.

在我的梦里，甚至自动识别基于什么我已经告诉了系统可能的偏移量和长度！

In my dreams, perhaps even automatically identify possible offsets and lengths based on what I've already told the system!

推荐答案

有关Mac OS X中，有一个新的伟大的工具，比我iBored甚至更好：Synaliyze它！
（ http://www.synalysis.net/ ）

For Mac OS X, there's a new great tool that's even better than my iBored: Synaliyze It! (http://www.synalysis.net/)

在结构，包括可脚本（和Lua）。它可视化结构更好了。

Compared to iBored, it is better suited for non-blocked files, while also giving full control over structures, including scriptability (with Lua). And it visualizes structures better, too.

这篇关于工具来帮助进行反向工程二进制文件格式的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！