Cerbero Suite 7.3 Release
2024-2-7 02:55:50 Author: blog.cerbero.io(查看原文) 阅读量:9 收藏

We’re happy to announce the release of Cerbero Suite 7.3 and Cerbero Engine 4.3! This release brings a multitude of enhancements, and in this post, we will highlight the most significant additions.

Strings

The latest update introduces the “Find Strings” action, a significant enhancement in our toolset. This versatile action can be activated from both hex views and Carbon disassembly views.

Upon invoking the “Find Strings” action, you are presented with options to specify the type of strings you’re looking for. This includes choices for encoding, language, minimum length and the option for zero-termination.

The search process is not only rapid but also dynamic, with the results being populated and updated in real-time during the search.

Selecting a specific string in the results will conveniently navigate you to its corresponding location in the view from where the action was initiated.

For an alternative viewing experience, the strings can also be opened in a text browser via the context menu or simply by pressing Ctrl+P.

When dealing with binaries like PE, ELF, or MachO, the feature provides not just the strings but also their specific locations within the binary.

To enhance usability, a quick filter function is available, allowing for efficient searching of specific strings.

Of course, searching for strings in large files and memory dumps is supported.

The “Find Strings” action is also fully compatible with Carbon disassembly views.

Improved ELF Parser

Our ELF parser has been significantly enhanced with new features and improved support for various edge cases.

Among the key enhancements is the ability to inspect dynamic tags.

We’ve also introduced layout ranges, mirroring the functionality available for PE and MachO binaries.

Layout ranges provide a graphical overview of the structure of a file.

Ghidra 11

We’ve updated our Native Ghidra UI package, ensuring full compatibility with the newly released Ghidra version 11.

Updated YARA

We have upgraded the YARA engine to its most recent version, ensuring comprehensive support for all existing rules.

SDK & Documentation

The SDK has been enriched with a variety of new functions and classes. A noteworthy addition is the exposure of the script editor view. This enables you to develop and integrate your own scripting solutions, complete with custom auto-completion functionality. Furthermore, we have documented the PNG module.


文章来源: https://blog.cerbero.io/cerbero-suite-7-3-release/
如有侵权请联系:admin#unsafe.sh