Community Tools
CrowdInspect
Host-Based Process Inspection
CrowdInspect is a free community tool for Microsoft Windows systems that is aimed to help alert you to the presence of potential malware on your computer that may be communicating over the network. It is a host-based process inspection tool utilizing multiple sources of information to detect untrusted or malicious network-active processes. The tool is leveraging intelligence from VirusTotal, Web of Trust (WOT), and Team Cymru's Malware Hash Registry.
Supported Operating Systems: The tool runs on both 32 bit and 64 bit versions of Windows from XP and above.
Integrity Hashes:
CrowdInspect.zip
MD5 4cf651675e3eafc0c50a5ac20ceab235
SHA1 2d6ff0a7842d204a0c8d0d35bf52ce8cf25f362d
SHA256 fb61ca68a921a8101ad07ac5264aacdda17301002c006162f862b716acb5736a
CrowdInspect.exe
MD5 2c2ee14c77cda049fe9fc16a49711a14
SHA1 a7d9217b70cfd40e0aed74e21f1de0fa94569685
SHA256 08a5fe8c057c047708784fe6b820a8ebce086ecce9ef696d6690014b20a9ae5e
CrowdRE
Crowdsourced Reverse Engineering
Join the crowd! Quickly reversing complex software is extremely challenging due to the lack of professional tools that support collaborative analysis. CrowdRE fills this gap, by leveraging architecture to organize source code repositories, a system that manages a history of changesets as commit messages. The central component is a cloud based server that keeps track of commits in a database. Each commit covers one or more functions of an analyzed binary and contains information like annotations, comments, prototype, struct and enum definitions. Users can search the database for commits of functions by constructing a query of the analyzed binary's hash and the function offset.
CrowdRE is available free as an IDA Pro plugin.
Supported Operating Systems: Windows, Linux, and OS X
