1. Freshow tool (by jimmyleo)
Tool introduction (from freshow help documentation ):
Freshow is a script decryption tool. It was originally developed to reduce mechanical operations and simplify processing steps so that you can focus on the script itself. Generally, there are two decryption Methods: manual and tool. Freshow tries its best to make the work completed in one tool. Of course, it is not so mature. You can use other tools to complete the work. Freshow currently provides the filter and decryption function module to meet common encryption analysis operations. Its performance and stability depend on your familiarity with Freshow, your understanding of script knowledge, and your analysis.
2. HTMLDecoder (Author: Xiangzi)
Tool introduction:
This is an automatic decryption tool with very powerful functions. Unfortunately, I did not study it very deeply. I used it to decrypt flash and pdf files.
3. malzilla is also called an artifact.
Tool introduction:
This tool is very powerful, and freshow cannot solve the network horse. You can use this tool to solve it.
4. MDecoder (wheat field)
Tool introduction (from the blog of the wheat field ):
1) The imitators of Freshow are compiled using WIN32 Assembler.
2) support searching for swf and exe in the network horse (incomplete ).
3) supports Network horse recognition. You can modify classid. ini to expand features.