{"id":36797,"date":"2025-03-03T11:17:38","date_gmt":"2025-03-03T11:17:38","guid":{"rendered":"https:\/\/kalilinuxtutorials.com\/?p=36797"},"modified":"2025-03-03T11:17:40","modified_gmt":"2025-03-03T11:17:40","slug":"pyclassinformer","status":"publish","type":"post","link":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/","title":{"rendered":"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro"},"content":{"rendered":"\n<p><a href=\"https:\/\/kalilinuxtutorials.com\/tag\/pyclassinformer\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>PyClassInformer<\/strong> <\/a>is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. <\/p>\n\n\n\n<p>While existing tools like Class Informer and SusanRTTI offer similar functionality, PyClassInformer stands out by addressing limitations such as the inability to use these tools as libraries and the lack of advanced class hierarchy management.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Key Features<\/strong><\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Cross-Platform Compatibility<\/strong>: PyClassInformer supports Windows, macOS, and <a href=\"https:\/\/github.com\/herosi\/PyClassInformer\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Linux<\/a>, as it is written in Python and runs within IDA Pro.<\/li>\n\n\n\n<li><strong>RTTI Parsing<\/strong>: It parses RTTI for both x86 and x64 binaries, extracting detailed information about class layouts and hierarchies.<\/li>\n\n\n\n<li><strong>Enhanced Visualization<\/strong>: The plugin provides a tabular output with additional columns like:\n<ul class=\"wp-block-list\">\n<li><em>Offset<\/em>: Displays the offset of a virtual function table (vftable) in the class layout.<\/li>\n\n\n\n<li><em>Hierarchy Order<\/em>: Shows inheritance order from a class to its top-most superclass.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Integration with Python<\/strong>: Results can be accessed programmatically by importing PyClassInformer as a library, enabling advanced automation and analysis.<\/li>\n<\/ul>\n\n\n\n<p>To launch PyClassInformer:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Press <code>Alt+Shift+L<\/code> in IDA Pro.<\/li>\n\n\n\n<li>Alternatively, navigate to <code>Edit -> Plugins -> PyClassInformer<\/code>.<\/li>\n<\/ol>\n\n\n\n<p>Double-clicking any entry in the results navigates directly to the corresponding vftable address.<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Place <code>pyclassinformer_plugin.py<\/code> and the <code>pyclassinformer<\/code> folder into the <code>plugins<\/code> directory of your IDA user directory (<code>$IDAUSR<\/code>).<\/li>\n\n\n\n<li>Restart IDA Pro to load the plugin.<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>IDA Pro<\/strong>: Version 7.4 or later (tested on versions up to 9.1).<\/li>\n\n\n\n<li><strong>Python<\/strong>: Version 3.x (tested on Python 3.8 and 3.10).<\/li>\n<\/ul>\n\n\n\n<p>PyClassInformer outputs detailed RTTI information, including Complete Object Locators (COL), Class Hierarchy Descriptors (CHD), and Base Class Descriptors (BCD). <\/p>\n\n\n\n<p>It also visualizes class hierarchies in a tree-like structure, aiding reverse engineers in understanding complex inheritance relationships.<\/p>\n\n\n\n<p>Compared to tools like Class Informer, PyClassInformer offers:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Library functionality for integration into custom Python scripts.<\/li>\n\n\n\n<li>Additional data columns for better analysis of class layouts and hierarchies.<\/li>\n<\/ul>\n\n\n\n<p>While it shares some similarities with SusanRTTI, PyClassInformer enhances usability by combining RTTI parsing with flexible data handling capabilities.<\/p>\n\n\n\n<p>In summary, PyClassInformer is an invaluable tool for reverse engineers working with C++ binaries, offering both ease of use and powerful insights into object-oriented structures.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like Class Informer and SusanRTTI offer similar functionality, PyClassInformer stands out by addressing limitations such as the inability to use these tools as libraries and the lack of advanced class hierarchy management. Key Features To launch PyClassInformer: [&hellip;]<\/p>\n","protected":false},"author":12,"featured_media":36801,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[20,25,38],"tags":[737,6321,6052,6325,7201],"class_list":["post-36797","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-security","category-hacking-tools","category-software","tag-cybersecurity","tag-informationsecurity","tag-kalilinux","tag-kalilinuxtools","tag-pyclassinformer"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro<\/title>\n<meta name=\"description\" content=\"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro\" \/>\n<meta property=\"og:description\" content=\"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\" \/>\n<meta property=\"og:site_name\" content=\"Kali Linux Tutorials\" \/>\n<meta property=\"article:published_time\" content=\"2025-03-03T11:17:38+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-03-03T11:17:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Varshini\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:site\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Varshini\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\"},\"author\":{\"name\":\"Varshini\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa\"},\"headline\":\"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro\",\"datePublished\":\"2025-03-03T11:17:38+00:00\",\"dateModified\":\"2025-03-03T11:17:40+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\"},\"wordCount\":322,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp\",\"keywords\":[\"cybersecurity\",\"informationsecurity\",\"kalilinux\",\"kalilinuxtools\",\"PyClassInformer\"],\"articleSection\":[\"Cyber security\",\"Hacking Tools\",\"software\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\",\"name\":\"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp\",\"datePublished\":\"2025-03-03T11:17:38+00:00\",\"dateModified\":\"2025-03-03T11:17:40+00:00\",\"description\":\"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp\",\"width\":1600,\"height\":900},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"name\":\"Kali Linux Tutorials\",\"description\":\"Kali Linux Tutorials\",\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\",\"name\":\"Kali Linux Tutorials\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"width\":272,\"height\":90,\"caption\":\"Kali Linux Tutorials\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/CyberEdition\",\"https:\/\/www.threads.com\/@cybersecurityedition\",\"https:\/\/www.linkedin.com\/company\/cyberedition\",\"https:\/\/www.instagram.com\/cybersecurityedition\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa\",\"name\":\"Varshini\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g\",\"caption\":\"Varshini\"},\"description\":\"Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.\",\"sameAs\":[\"http:\/\/kalilinuxtutorials.com\",\"https:\/\/www.linkedin.com\/in\/senthamil-selvan-14043a285\/\"],\"url\":\"https:\/\/kalilinuxtutorials.com\/author\/vinayakagrawal\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro","description":"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/","og_locale":"en_US","og_type":"article","og_title":"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro","og_description":"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like","og_url":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/","og_site_name":"Kali Linux Tutorials","article_published_time":"2025-03-03T11:17:38+00:00","article_modified_time":"2025-03-03T11:17:40+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","type":"image\/webp"}],"author":"Varshini","twitter_card":"summary_large_image","twitter_creator":"@CyberEdition","twitter_site":"@CyberEdition","twitter_misc":{"Written by":"Varshini","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#article","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/"},"author":{"name":"Varshini","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa"},"headline":"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro","datePublished":"2025-03-03T11:17:38+00:00","dateModified":"2025-03-03T11:17:40+00:00","mainEntityOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/"},"wordCount":322,"commentCount":0,"publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage"},"thumbnailUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","keywords":["cybersecurity","informationsecurity","kalilinux","kalilinuxtools","PyClassInformer"],"articleSection":["Cyber security","Hacking Tools","software"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/","url":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/","name":"PyClassInformer : An Advanced RTTI Parsing Plugin For IDA Pro","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage"},"thumbnailUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","datePublished":"2025-03-03T11:17:38+00:00","dateModified":"2025-03-03T11:17:40+00:00","description":"PyClassInformer is an IDAPython-based plugin designed for parsing Run-Time Type Information (RTTI) in C++ binaries. While existing tools like","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kalilinuxtutorials.com\/pyclassinformer\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/pyclassinformer\/#primaryimage","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","width":1600,"height":900},{"@type":"WebSite","@id":"https:\/\/kalilinuxtutorials.com\/#website","url":"https:\/\/kalilinuxtutorials.com\/","name":"Kali Linux Tutorials","description":"Kali Linux Tutorials","publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/kalilinuxtutorials.com\/#organization","name":"Kali Linux Tutorials","url":"https:\/\/kalilinuxtutorials.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","width":272,"height":90,"caption":"Kali Linux Tutorials"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/CyberEdition","https:\/\/www.threads.com\/@cybersecurityedition","https:\/\/www.linkedin.com\/company\/cyberedition","https:\/\/www.instagram.com\/cybersecurityedition\/"]},{"@type":"Person","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/3c3b3f82a74146532c4def299fe069fa","name":"Varshini","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f19f43637c0f83fb3dcfb498f306b2a9ac0025ce85840ab52ee8c01f5361f269?s=96&d=mm&r=g","caption":"Varshini"},"description":"Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.","sameAs":["http:\/\/kalilinuxtutorials.com","https:\/\/www.linkedin.com\/in\/senthamil-selvan-14043a285\/"],"url":"https:\/\/kalilinuxtutorials.com\/author\/vinayakagrawal\/"}]}},"jetpack_featured_media_url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/PyClassInformer-.webp","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":32386,"url":"https:\/\/kalilinuxtutorials.com\/msdocviewer\/","url_meta":{"origin":36797,"position":0},"title":"msdocviewer &#8211; Streamlining Win32 API And Driver Documentation Viewing &#8211; A Comprehensive Guide","author":"Varshini","date":"March 20, 2024","format":false,"excerpt":"msdocviewer\u00a0is a simple tool for viewing Microsoft's win32 API and driver technical documentation. msdocviewer\u00a0consists of two parts. The first is a parser (run_me_first.py) that searches for all markdown files in the Microsoft\u00a0sdk-api\u00a0and\u00a0driver\u00a0repository, it then checks if the document is related to a function and if so, it copies the document\u2026","rel":"","context":"In &quot;Cyber security&quot;","block_context":{"text":"Cyber security","link":"https:\/\/kalilinuxtutorials.com\/category\/cyber-security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEilmHBJf3OoHyVmWduH5NAmomkt9F8b0LnG-sZISTzGtw3EWNo7t6cRWzxBVQPRAL1iLQOMQejbx_LRppIl1mUqMV0hByoVqaw2KMuy1wCvCDVKy8qd21SVfOhooTiG_TT9O3ghzNiQgM_3wXs0LxR6-t6kcWCp23YqbntWoCb-iTOW3Npv-uvkZxMtxKxK\/s16000\/msdocviewer.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":33733,"url":"https:\/\/kalilinuxtutorials.com\/ifl-interactive-functions-list\/","url_meta":{"origin":36797,"position":1},"title":"IFL &#8211; Interactive Functions List : Enhancing IDA Pro With Advanced Function Navigation nd Import Features","author":"Varshini","date":"July 9, 2024","format":false,"excerpt":"Discover the power of the IFL - Interactive Functions List, a dynamic plugin designed to elevate your experience with IDA Pro. This user-friendly tool revolutionizes how you navigate between functions and their references, making your analysis more efficient. Whether you're importing reports from tools like PE-sieve or navigating in either\u2026","rel":"","context":"In &quot;Hacking Tools&quot;","block_context":{"text":"Hacking Tools","link":"https:\/\/kalilinuxtutorials.com\/category\/hacking-tools\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg8qsT0oPmpjK5BpdeNVpHRTVSSoYBSZ1y3MnMKPGCak38Lp-lhUCYGkrByY5leE3D66ZO7iQavICqlPuDwMtYL9kTz7GQbUjkarUknACw0m9PJ2Djw_8pMpI5rdlLhZNUTtsS23BX5S6ot7lxxNFxyvYh7c1otqXQkYjbRBhL9tKqjbyzJ0p1ymXx5fJqN\/s16000\/IFL%20-%20Interactive%20Functions%20List%20.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":35429,"url":"https:\/\/kalilinuxtutorials.com\/hrtng-ida-plugin-elevating-idas-capabilities-for-advanced-malware-analysis\/","url_meta":{"origin":36797,"position":2},"title":"hrtng IDA Plugin : Elevating IDA&#8217;s Capabilities For Advanced Malware Analysis","author":"Varshini","date":"December 11, 2024","format":false,"excerpt":"hrtng IDA plugin is a collection of tools, ideas and experiments from different sources I've found interesting and useful in my reversing work. A practical guide to the reverse of a complex malware using the example of dissecting a FinSpy module with help of hrtng IDA plugin on securelist There\u2026","rel":"","context":"In &quot;Malware&quot;","block_context":{"text":"Malware","link":"https:\/\/kalilinuxtutorials.com\/category\/malware\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjSjqTCMpgErTwvhs8Pwxrzhh1vlkbosIPdeKSze2DmCM4MeOvJvqX1C704IHUr6OcakNQcjXZEKUTuU0078asNZNCo_DLGHD5cxnFrjWll3-8mNfm-l-aYKpZGLasRc4YX8OllJ_k3Ff1yGnMOLuvTFIj66qxnoaPRtQcGHFdNAWQXR4ui3BNG3EOByYiW\/s1600\/hrtng%20IDA%20Plugin.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":37337,"url":"https:\/\/kalilinuxtutorials.com\/xrefgen\/","url_meta":{"origin":36797,"position":3},"title":"XrefGen &#8211; Advanced Cross-Reference Generator For IDA Pro","author":"Varshini","date":"March 27, 2025","format":false,"excerpt":"XrefGen is an innovative IDAPython script designed to augment IDA Pro's static analysis capabilities by identifying and generating additional cross-references that may not be automatically detected by IDA Pro. These supplementary references are formatted to be compatible with Mandiant's XRefer plugin, enhancing navigation and understanding of complex code structures. Key\u2026","rel":"","context":"In &quot;Cyber security&quot;","block_context":{"text":"Cyber security","link":"https:\/\/kalilinuxtutorials.com\/category\/cyber-security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/03\/XrefGen-.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":32674,"url":"https:\/\/kalilinuxtutorials.com\/nimfilt\/","url_meta":{"origin":36797,"position":4},"title":"Nimfilt &#8211; Unraveling The Secrets Of Nim Binaries With Advanced Analysis Tools","author":"Varshini","date":"April 8, 2024","format":false,"excerpt":"Nimfilt is a collection of modules and scripts to help with analyzing\u00a0Nim\u00a0binaries. It started out as a CLI demangling tool inspired by\u00a0c++filt. It evolved into a larger set of tools for analyzing Nim, but the original name stuck. nimfilt.py: a Python module that implements demangling for Nim. It can also\u2026","rel":"","context":"In &quot;Hacking Tools&quot;","block_context":{"text":"Hacking Tools","link":"https:\/\/kalilinuxtutorials.com\/category\/hacking-tools\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgCzVk6FZ8F0j-SX-Me_CSkm8yBrqbq0TNXt8RcZu9fKhjRXzuO4bRtxlm6drlNh5NVDTcRn356N5LmUN_VW2BOK6JCgiJFetoEgIYUuU_cVhCFhxJo4gpjZEcaXQMvceJgPXfT41UjjI253CoAc8rFxDbbZf8-SPIwa5RNxsJkoz0M7Pj5bDWWdoqu92tx\/s16000\/Nimfilt%20.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":5531,"url":"https:\/\/kalilinuxtutorials.com\/ponce-ida-pro-plugin\/","url_meta":{"origin":36797,"position":5},"title":"Ponce : IDA Pro Plugin That Provides Users The Ability To Perform Taint Analysis &#038; Symbolic Execution","author":"R K","date":"June 29, 2019","format":false,"excerpt":"Ponce is an IDA Pro plugin that provides users the ability to perform taint analysis and symbolic execution over binaries in an easy and intuitive fashion. With Ponce you are one click away from getting all the power from cutting edge symbolic execution. Entirely written in C\/C++. Symbolic execution is\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36797","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/comments?post=36797"}],"version-history":[{"count":2,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36797\/revisions"}],"predecessor-version":[{"id":36800,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/36797\/revisions\/36800"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media\/36801"}],"wp:attachment":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media?parent=36797"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/categories?post=36797"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/tags?post=36797"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}