Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Scylla Imports Reconstruction Source

Aguila
Aguila
in Scylla Imports Reconstruction

Featured Replies

Posted
Scylla Imports Reconstruction Source

View File

Scylla Imports Reconstruction Source

Scylla - x64/x86 Imports Reconstruction

ImpREC, CHimpREC, Imports Fixer... this are all great tools to rebuild an import table, but they all have some major disadvantages, so I decided to create my own tool for this job.

Scylla's key benefits are:

  • x64 and x86 support
  • full unicode support
  • written in C/C++
  • plugin support
  • works great with Windows 7

This tool was designed to be used with Windows 7 x64, so it is recommend to use this operating system. But it may work with XP and Vista, too.

Source code is licensed under GNU GENERAL PUBLIC LICENSE v3.0

https://github.com/NtQuery/Scylla
https://github.com/x64dbg/Scylla

 

 

Edited by Aguila

    • Like 11
    clap2.gifclap.gif

    So many Greetings to gRn?? Which Member since probably behind it??clap2.gifclap.gifclap.gif

    Nice to see you releasing the source code as well! :)

    • 1 month later...

    The software is nice. But it needs some improvements. Good work!

    • Author

    But it needs some improvements.

    prove it!

    The software is nice. But it needs some improvements. Good work!

    You might want to elaborate on that for it to be a useful comment... smile.png

    Ted.

    • 2 weeks later...

    good,maybe searching iat need improving.

    00749BD4 00F349A0 Calender.ShowCalender iat end importREC can recognize right

    00749BD8 00000000

    00749BDC 6E72656B

    00749BE0 32336C65

    00749BE4 6C6C642E

    00749BE8 00000000

    00749BEC 656C6544

    00749BF0 72436574

    .....

    but Scylla Imports Reconstruction recognize iat end error

    iat_rva="00349BCC" address_va="00ED3C5C" />

    </module>

    <module filename="calender.dll" first_thunk_rva="00349BD4">

    <import_valid name="ShowCalender" ordinal="0001" hint="0000" suspect="0" iat_rva="00349BD4" address_va="00F349A0" />

    </module>

    <module filename="?" first_thunk_rva="00349BDC">

    <import_invalid iat_rva="00349BDC" address_va="6E72656B" />

    <import_invalid iat_rva="00349BE0" address_va="32336C65" />

    <import_invalid iat_rva="00349BE4" address_va="6C6C642E" />

    <import_invalid iat_rva="00349BEC" address_va="656C6544" />

    <import_invalid iat_rva="00349BF0" address_va="72436574" />

    <import_invalid iat_rva="00349BF4" address_va="63697469" />

    • 3 weeks later...
    • Author

    good,maybe searching iat need improving.

    Try the new version 0.5a, the iat search is now improved. I tested it against a few targets and it seems now more accurate than imprec's search.

    get 0.5a here: http://forum.tuts4you.com/files/file/576-scylla-imports-reconstruction/

    •
    • Like 1
    • 2 years later...

    Good tools thanks a lot


    • 2 years later...
    • 2 years later...
    • Author

    Hi,

    sorry I wasn't online for so long. I am still alive 🙂 but I had a HDD crash and lost almost everything including account information. Today I was able to recover some account information from a forgotten USB stick. At least the forum here + bitbucket/github account. So I may be able to work on the projects again 🙂

    • Like 3
    • Thanks 1

    Welcome back @Aguila  😀

    1 hour ago, Aguila said:

    So I may be able to work on the projects again 🙂

    Thank you for the commits! 👍

    Ted.

    • 5 years later...

    Commits on Oct 19, 2022

    Merge remote-tracking branch 'thecruz/patch-1' into vs13

    mrexodia

    committed2 years ago

    Merge remote-tracking branch 'upstream/master' into vs13

    mrexodia

    committed2 years ago

    Fix some dead links

    mrexodia

    committed2 years ago

    Commits on Jan 23, 2018

    use sensible default configuration

    mrexodia

    committed7 years ago

    Verified

    Commits on Jun 3, 2017

    ignore vs directory

    mrexodia

    committed7 years ago

    Verified

    Commits on Apr 18, 2017

    added support for Windows 8.1 and Windows 10 (x64dbg/x64dbg#1548)

    mrexodia

    committed7 years ago

    Verified

    Commits on Dec 1, 2016

    allow to dump a PE file from raw memory with just an image base @hasherezade

    mrexodia

    committed8 years ago

    Verified

    fixed a bug with the x64dbg memory read functions (now checks if the target process is correct)

    mrexodia

    committed8 years ago

    • Like 1

    Create an account or sign in to comment

    Go to topic listing

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.