Well, since Kenjoe41 pointed out yesterday how you were all "waiting and waiting" here it is:
BinDyn, now in C++, with a GUI. it's been about 2 weeks since I said I'd code it in C++, and it's still not done (hell two of the modules are not even started beyond a template and a link to the main program).
However, it CAN:
Scan for signatures, Strings,
Created a few different plots in different ways for rapidly Identifying data structures,
save excerpts from the file you are working on once you have ID'd something you need.
Scan and map entropy with varying windows sizes and resolution.
Generate file statistics useful for Identifying if that blob of random text is say, AES encrypyed or just something like Uuencode.
And interface in the most rudimentary way with gdb and objdump, I don't personally see much use for the gdb one and its still not even close to done, however the objdump part could be useful if you think you have identified a malwares stub f.ex.
I read the guidelines and apparently we need screenshots so here you go:
Signature and String Scanning:
Digraph and Basic Hex Editor:
Statistics(Histogram) and Self Similarity Plot:
Entropy Map Displaying using space filling curves to keep data locality alive:
Also displaying a byte plot set to 150 (150 data points per line):
Entropy Map with default settings, also a not implemented conversions feature:
Finally, the GDB and Objdump Dissasembler integration:
Funny enough I was going to code my own x86 dissasembler until I realized that I might as well just assume the user has GNU build tools installed and save myself many many hours of life.
Will probably still code a dissasembler for the learning experience but I think Ill choose like IL or ARM.
Anyway that's it for now folks, it's coming along swimmingly, and it's on github:
https://github.com/TheRealHTH/BinDynI will be continuing to work on this, and there is lots I want to improve upon but there it is.
