Yes, sort of... depending on what "this" means. These are actually two very good tools, but they are limited to specific tasks where as dumpulator is a sledgehammer... great for everything so long as you don't mind a bit of overkill. So first appcall can be used to call a function from IDA but it calls the actual function in a debugger (natively) not in an emulator, so it's not safe unless you are using a separate debug VM etc. Also, it's tied to IDA so it's not a good choice for standalone scripts (like config extractors). But assuming you setup your IDA environment safely you could get more or less the same functionality if your goal was to simply call a function and test some input. Now for reasm this quite different ... reasm is good at an algorithm in a compiled windows binary and converting it into native linux library... conceptually this closer to the way we used dumpulator at the end to decrypt Emotet strings. However, the main drawback of reasm is that it can only convert algorithms, as soon as you hit a simple API call you need to work around it somehow... also you are tied to the platform you compile for. Even with the simple Emotet example we showed there are a few API calls buried in the function that are emulated in dumpulator which would fail in reasm. But again, if your goal was to simply convert a complex algorithm into a native library for linux and the algorithm didn't have any API calls reasm would be a good choice as it would be much faster than dumpulator. Hope this answers your questions : )
@@OALABS Thank you, for the informative explanation and comparison of the tools! Yes, you have answered my questions :) looking forward to seeing more use cases for this.
How would i get the functionality of MiniDump plugin used on windows with x64dbg, on a linux machine? In other words, how to use dumpulator on linux? Just a beginner here…
![Why Is The PE Entry Point Not The Same As Main SEH and The _security_init_cookie [Patreon Unlocked]](http://i.ytimg.com/vi/suwZB3EA_u4/mqdefault.jpg)
![Malware Triage Tips: How To Stop Wasting Time in IDA On Packed Samples [ Twitch Clip ]](/img/n.gif)
Very nice 🔥, another banging videos🤙🏽
MCU: "We have the greatest crossover in history!"
OALabs:
This tool is amazing! I’m definitely going to use this
can I implement in memory fuzzing via dumpulator?
Great Video! Easy to understand.
Wonder how this would work compared to angr. Oh or with angr.... i should check this out
Dump it live! This is awesome though :D can't wait to have a play
Neat! Now we need unicorn engine tutorial in addition)
Very promising tool, love this channel!
just wondering, seems like its possible to do this, using IDA's appcall functionality? and/or fox-it reasm tool?
Yes, sort of... depending on what "this" means. These are actually two very good tools, but they are limited to specific tasks where as dumpulator is a sledgehammer... great for everything so long as you don't mind a bit of overkill. So first appcall can be used to call a function from IDA but it calls the actual function in a debugger (natively) not in an emulator, so it's not safe unless you are using a separate debug VM etc. Also, it's tied to IDA so it's not a good choice for standalone scripts (like config extractors). But assuming you setup your IDA environment safely you could get more or less the same functionality if your goal was to simply call a function and test some input. Now for reasm this quite different ... reasm is good at an algorithm in a compiled windows binary and converting it into native linux library... conceptually this closer to the way we used dumpulator at the end to decrypt Emotet strings. However, the main drawback of reasm is that it can only convert algorithms, as soon as you hit a simple API call you need to work around it somehow... also you are tied to the platform you compile for. Even with the simple Emotet example we showed there are a few API calls buried in the function that are emulated in dumpulator which would fail in reasm. But again, if your goal was to simply convert a complex algorithm into a native library for linux and the algorithm didn't have any API calls reasm would be a good choice as it would be much faster than dumpulator. Hope this answers your questions : )
@@OALABS Thank you, for the informative explanation and comparison of the tools! Yes, you have answered my questions :) looking forward to seeing more use cases for this.
Come hang out on our discord! I think you would enjoy the stuff we are working on :)
Dumpit!
How would i get the functionality of MiniDump plugin used on windows with x64dbg, on a linux machine?
In other words, how to use dumpulator on linux? Just a beginner here…
Ghidra is vulnerable to log4j vulnerability
That is very true... but also very irrelevant to this video 😆😆
@@OALABS cool
Can you make a video about the new crypter called Babadeda Crypter?
Send hashes : )
nice tool. also craqq coqaine.
Bro I want to contact you for business purpose. Any email id to contact??