Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] Java Decompilers

Re: [PEN-TEST] Java Decompilers

From: Tirath Rai <Tirath_at_SCANIT.BE>
Date: Wed, 22 Nov 2000 11:29:54 +0100

Hey,

IMHO Mocha works well, its earned its place in my pen test toolset.
It does choke on some class files, perhaps about a quarter of them.
This is not because they are deliberately obsfucated but I guess its
just not built for all occasions. Still it does produce nice readable
code which can be re-compiled with minor adjustments. Decent resource:
http://www.meurrens.org/ip-Links/java/codeEngineering/tercentennial.html

I also use JavaDump, it rips out key things from a class file, output is

in HTML form. This is fine if you just want a very basic picture.

If you want to go a level lower and the class files you are looking at
are obfuscated or your decompilers are choking on them perhaps you can
use the disassembler which comes with JDK. The -c flag prints out
disassembled code. The JVM spec book is on the Sun Java site and other
docs to help you it figure out are out there. Besides it can be 'fun'
figuring out disassembled class files, if you have too much time on your

hands ;)

Tirath Rai

SCANIT
http://www.scanit.be
Received on Nov 23 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos