PSA: Iβll be at #codeblue_jp next week in Tokyo. Website: https://codeblue.jp/
#reverseengineering #idapro #hexrays #idapython
#idapython
Code Execution in IDA MCP Servers
This article explains how to run IDA Python scripts using IDA's Multiple Command Processor (MCP) feature, enhancing reverse engineering workflows.
Any #IDAPython pros here? I have asked a question on Reverse Engineering StackExchange:
How to get rid of warning "Undefined or unknown machine type" using IDA Python?
Any reply/comment will welcome βΊοΈ
#Nimfilt has been updated to work with the API changes in the newly released #IDAPro 9.0 (while keeping it backwards-compatible with IDA 8.X)
+ more strings should now be properly typed and named!
https://github.com/eset/nimfilt
For other plugin/script writers: the #IDAPython documentation and the porting guide are still contradicting each other in places...π€¦ It seems like the porting guide is more up-to-date, but YMMV
Soo, the #IDA directory functionality (from the ida_dirtree module) is reeaaal weird about ".."
It's both a valid directory name AND a reference to the parent directory... This leads to some great counterintuitive behavior π΅β
(starting fresh for every command):
dirtree.mkdir("../")
/
Ok
dirtree.mkdir("../test")
/
βββ test
Sure
dirtree.mkdir("../..")
/
Looks good
dirtree.mkdir("../../")
/
βββ ..
Huh?
dirtree.mkdir("dir1/../dir2")
/
βββ dir1
β βββ ..
βββ dir2
Wtf?
Thank you #IDAPython for introducing infinite recursion issues to my code in new, unexpected ways! π¬
February Plugin Roundup ποΈ AntiDebugSeeker was again the most downloaded #IDAPlugin π It is also great to see q3vm making it to the chart for the first time π€© Do you think your plugin is good enough to be in the top 5 π€ https://plugins.hex-rays.com/
Our #PluginCommunitySurvey has concluded π An enormous Thank You to all of you who took the time to participate and share valuable insights π In the meantime, we have contacted the winners of the mugs, so check your inbox to see if you are among the lucky ones π
New year - new leader! AntiDebugSeeker was the most downloaded #IDAplugin in January! The 3rd place was for abyss. Congratulations to Driver Buddy for its first appearance in the chart. Got a cool plugin? Publish it todayπhttps://plugins.hex-rays.com
This is your last chance to participate in our #PluginCommunitySurvey! Weβve already received many great insights and suggestions, but we also want your feedback. Send it today for a chance to win a cool IDA Mug π https://hex-rays.com/blog/participate-in-our-ida-plugin-community-survey/?utm_source=Social-Media&utm_medium=Mastodon&utm_campaign=Plugin-Community_survey-02
π#IDAPython continues to baffle me! Working on a script for #nim binaries, I realized that reading data outside the IDB's currently mapped memory just return an appropriate number of 0xFF bytes...
Which leads to some truly bizarre behavior like:
idaapi.get_byte(idaapi.BADADDR) --> 0xff π€¦
Weβve just published a #PluginFocus article by David CatalΓ‘n. He introduces his q3vm plugin - a handy tool that includes the loader and processor modules to help analyze binaries built with the Quake III virtual machine obfuscator. π https://hex-rays.com/blog/plugin-focus-q3vm/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=Plugin-Focus-msdocviewer
Your opinion counts! Participate in our IDA Plugin Community Survey and share your insights. Your feedback is key to improving the overall #IDAPlugin experience.
πGive us a few minutes of your time and you might win a very cool IDA Mug! π
Take the survey now π https://hex-rays.com/blog/participate-in-our-ida-plugin-community-survey/?utm_source=Social-Media&utm_medium=Mastodon&utm_campaign=Plugin-Community_survey-01
What I want to do in #ghidra, specifically, is to show a list in a GUI, as well as show directed graphs, as I do with choosers and GraphViewer objects in #IDAPython, in case you are curious. And, optionally, show a tree list like the one used for functions, classes, etc... in Ghidra.
We conclude the year with IDAClu on the top, and golang_loader_assist appears in the chart for the first time! Have you got a cool plugin that deserves attention? Send it to us, and letβs see if it will make it to the chart π https://plugins.hex-rays.com
Viewing Microsoftβs technical specifications in IDA? Thatβs possible with Alexander Hanelβs Plugin β msdocviewer. Read our new #PluginFocus article and learn more about this simple but helpful tool π https://hex-rays.com/blog/plugin-focus-msdocviewer/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=Plugin-Focus-msdocviewer
Is anyone interested in installing IDA plugins as Python packages, using pip?
I wrote a POC if anyone wants to try it https://github.com/tmr232/ida-plugin-loader/tree/python-entry-point
A total dominance for the top 5 plugins in November! There were no significant changes, except Virtuailor was back in the game! Could you change that? Publish your plugin on our #PluginRepository, and you might get a cool cap πhttps://hex-rays.com/blog/the-plugin-submission-initiative/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=plugin-submission-initiative-06
Weβve got some cool stuff today! A #PluginFocus article by Baptiste Verstraeten from the @thalium_team . He introduces #Symless - a nifty tool aiming to simplify the process of retrieving & defining structures, classes, and virtual tables π https://hex-rays.com/blog/plugin-focus-symless/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=Plugin-Focus-Symless
Weβve just got the results for October π€© Congratulations to IdaClu for taking over the first place π Want to challenge the leader? Publish your plugin on our #PluginRepository, win a cool cap, and get in the game πhttps://hex-rays.com/blog/the-plugin-submission-initiative/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=plugin-submission-initiative-05
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst