Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

IDA plugin proposal: hrtng.vm #1196

Open
mwilliams31 opened this issue Dec 10, 2024 · 2 comments
Open

IDA plugin proposal: hrtng.vm #1196

mwilliams31 opened this issue Dec 10, 2024 · 2 comments
Labels
👩‍🦱 IDA Related to IDA or an IDA plugin 🌀 FLARE-VM A package or feature to be used by FLARE-VM 🆕 package New package request/idea/PR

Comments

@mwilliams31
Copy link
Contributor

Package Name

ida.plugin.hrtng

Tool Name

hrtng.dll

Package type

IDA_PLUGIN

Version

1.1.8

Tool's authors

Sergey Belov

Tool's description

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Download URL

https://github.com/KasperskyLab/hrtng/releases/download/v1.1.8/hrtng-1.1.8.7z

Download SHA256 Hash

58dc9b893ca7f5a865175d90ac30dce50aab86f3e2b7d473b94269aa85f44fed

Why is this tool a good addition?

Contains numerous features not currently offered by existing IDA plugins installed in FLARE VM.

Extra information

No response

@mwilliams31 mwilliams31 added 👩‍🦱 IDA Related to IDA or an IDA plugin 🌀 FLARE-VM A package or feature to be used by FLARE-VM 🆕 package New package request/idea/PR labels Dec 10, 2024
@mwilliams31
Copy link
Contributor Author

Beyond including hrtng.dll in the plugins directory, it also requires "apilist.txt and literal.txt files from hrtng/bin/plugins".

@Ana06
Copy link
Member

Ana06 commented Dec 13, 2024

This is a great idea, thanks @mwilliams31! Because the way it is installed, we can use automation to create the package, but we should be able to add it manually. 😉 It seems there are different version for different IDA versions and I assume they can't co-exist, so I think we should install the IDA 9.0 version. Is that right?

@Ana06 Ana06 added this to the FLARE-VM 2025 Q1-P1 milestone Dec 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
👩‍🦱 IDA Related to IDA or an IDA plugin 🌀 FLARE-VM A package or feature to be used by FLARE-VM 🆕 package New package request/idea/PR
Projects
None yet
Development

No branches or pull requests

2 participants