本帖最后由 BlackHat 于 2024-6-3 14:28 编辑
Hopper Disassembler 5.15.6 The Reverse Engineering Tool that lets you Disassemble, Decompile and Debug your Applications. (逆向工程工具可讓您反組譯、反編譯和偵錯您的應用程式)
Version (5.15.6)
OS - MacOS Chip - Intel/Silicon Chip only U2B Update - 03 June 2024
- Native
Hopper is perfectly adapted to the environment. The macOS version makes full use of the Cocoa framework, and the Linux version makes use of Qt 5. - Procedures
Hopper analyzes function's prologues to extract procedural information such as basic blocks and local variables. - Extensible
With the Hopper SDK, you'll be able to extend Hopper's features, and even write your own file format and CPU support. - Control Flow Graph
Once a procedure has been detected, Hopper displays a graphical representation of the control flow graph. You can even export a PDF.
Hopper displays the code using different representations. Take a look at the assembly, the CFG, and the pseudo-code of a procedure, all at the same time.
- Scriptable
Most of the Hopper features can be invoked from Python scripts, giving you the ability to transform a binary in any way you want. - Debugger
Hopper can use LLDB or GDB, which lets you debug and analyze the binary in a dynamic way (only for Mac and Linux hosts, not for mobile devices). - Objective-C
Even if Hopper can disassemble any kind of Intel executable, it does not forget its main platform. Hopper is specialized in retrieving Objective-C information in the files you analyze, like selectors, strings and messages sent. - Decompiler
Based on an advanced understanding of the executable Hopper can present a pseudo-code representation of the procedures found in an executable.
Edit, annotate, comment your work directly from the interactive CFG view.
- Swift
This new version of Hopper is able to decode the mangled Swift names. No more cryptic names! - Tabs
Use tabs to create workspaces with different representations of the file. - Semantic Coloration
The analysis performed by Hopper separates code from data, memory accesses from stack variables… And to help you understand the various discovered objects, Hopper will use a different color to each of them. - Types
Use the embedded type editor to create your own structures, unions, or enumerated types. It greatly helps the understanding of the code to use symbols, rather than raw numbers.
Find what you are looking for. The inspector panel automatically adapts its content according to the context.
Tutorials :
- https://www.hopperapp.com/tutorial.html
- https://abad1dea.tumblr.com/post/23487860422/analyzing-binaries-with-hoppers-decompiler
- https://taomm.org/PDFs/vol1/CH%200x07%20Disassembling%20&%20Decompilation.pdf
- https://dhiyaneshgeek.github.io/mobile/security/2021/12/25/hopper-disassembler/
FAQ :
- https://www.hopperapp.com/faq.html
Plugins : - https://github.com/agatti/hopper-plugins
- https://github.com/knightsc/hopper
VirusTotal Score :
https://www.virustotal.com/gui/file/70a0ddc9275f531e153b0f346754a891ae5f6d153bfc08835ad1759e1974400f (5.15.3)
https://www.virustotal.com/gui/file/e46e540625b75024177efcb0869fe41015d42b30bc54271c01e2be7dc7dc3707 (5.15.4)
Download Link : https://github.com/BlackHatRCE/hop-osx
Credits : QinghanAWQ
You can resign If you need :
[Bash shell] 纯文本查看 复制代码 sudo codesign --remove-signature "/Applications/Hopper Disassembler v4.app" &&
sudo codesign -f -s - --timestamp=none --all-architectures --deep "/Applications/Hopper Disassembler v4.app" &&
sudo xattr -cr "/Applications/Hopper Disassembler v4.app"
Turn Off the SIP If only you are unable to launch.
|