Reverse Engineering
Delphi Programming
Multimedia & DirectShow
Assembly Language Reference
Downloads
Parto AntiVirus
Forum
About me
Links
OllyDebug :  OllyDbg is a 32-bit assembler level analysing debugger for Microsoft Windows. It can trace stack frames and detect some C function calls and also able to decode MMX, 3DNow! and SSE data types and instructions. With nice monitoring features it detects most of windows api functions and as i know most of reversers use this debugger as their favorite debugger.

Win32Disassembler: This is small disassembler/debugger with nice monitorng feauture (but not as well as Olly) and ability to detect some resource id referecnces in the source. many times it speeds up the process of reaching purpose. One of the disadvantages is, this program not supported more and it crashes while going to debug mode in large EXE files. For example you can not debug Yahoo Messenger or Paltalk Messenger using this debugger. You should use olly instead of this.

Restorator: This is nice tool for grabbing and editing windows PE executable files and also .exe, .dll, .res, .rc, .dcr files, change logos and get resource id's Translate existing applications (localization) Customize the look and feel of programs Replace logos and icons (branding) Enhance control over resource files in the software development process Hack into the inner workings of applications on your computer

Resource Hacker: This is a another small program that allow you to directly change the resource in EXE, DLL, OCX & CPL files and export their recource as RC files. Easy to use but some times it fail in large Resources and no longer supported.

XN Resource Editor: This is another Resource editor written in Delphi. It hasn't Visual dialog editor but an Open source one and that gives you the ability to add any feature you like. You can get more info and also grab the source code from it's website.

DEDE (Delphi Decompiler): DeDe is a great tool for decompiling delphi and BC++ builder applications it can give Events handlers addresses in exe file, recover Forms and also gives you some other nice features for reversing application or reconstructing lost source code.

TASM 5.0: Turbo Assembler 5.0 is a full featured stand-alone assembler. This includes all the tools needed to create and debug assembly programs for 16 and 32 bit DOS and Windows platforms, including Windows 3.X, Win95, Win98, and NT. Some of the tools included are assemblers, linkers, console style debuggers, and resource compilers. Each of these tools comes in a 16 bit and a 32 bit version.

FileMon: FileMon is an application that monitors and displays all file system activity on a system. It has advanced filtering and search capabilities that make it a powerful tool for exploring the way Windows works, seeing how applications use the files and DLLs, or tracking down problems in system or application configurations.

RegMon: RegMon is a Registry monitoring utility that will show you which applications are accessing your Registry, which keys they are accessing, and the Registry data that they are reading and writing - all in real-time. This advanced utility takes you one step beyond what static Registry tools can do, to let you see and understand exactly how programs use the Registry. With Regmon you'll see how the values and keys changed.

MASM 9.0: The Microsoft Macro Assembler (MASM) is a tool that consumes x86 assembly language programs and generates corresponding binaries.