Make your IDA Lazy!
- put
LazyIDA.py
intoplugins
folder under your IDA Pro installation path.
-
原版很久没更新【添加以下功能】
- 自动重定位跳转 (调试的时候不用重新计算偏移或者rebase)
- DUMP 指定内存到文件(脱壳不用脚本了)
- 粘贴 ASCII/HEX/BASE64 到指定内存 (批量修改内存)
- 复制 RVA
When you debug a program using ohter debuggers, such as ollydbg, and you want to jump to some runtime address in ida, but the imagebase had changed sometimes, so the only way is to rebase idb and type 'G' to jump to the target address. For some large program's idb, it will takes terrible time to rebase the idb.
offset = target_addr - target_base + currrent_base
LazyIDA can help you jump to other based-address without rebase. shortcuts: Shift + G, LazyIDA will copy the address from clipboard, and fill it in 'Target Addr'.
- Remove function return type in Hex-Rays:
- Convert data into different formats:
- Scan for format string vulnerabilities:
-
Jump to vtable functions by double clicking
-
Lazy shortcuts:
- Disasm Window:
w
: Copy address of current line into clipboard
- Hex-rays Window:
w
: Copy address of current item into clipboardc
: Copy name of current item into clipboardv
: Remove return type of current item
- Disasm Window:
-
paste data to arbitary address, supports paste from HEX, BASE64, or ASCII
- lazy dumper, A tool for dump memory to a file, you can specify it size in ui.