Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Package proposal: x64dbg.vm #853

Closed
stevemk14ebr opened this issue Jan 22, 2024 · 5 comments · Fixed by #857
Closed

Package proposal: x64dbg.vm #853

stevemk14ebr opened this issue Jan 22, 2024 · 5 comments · Fixed by #857
Labels
🆕 package New package request/idea/PR

Comments

@stevemk14ebr
Copy link
Contributor

stevemk14ebr commented Jan 22, 2024

Package Name

x64dbg

Tool Name

x64dbg

Package type

ZIP_EXE

Is the tool a console application?

false

Tool's version number

2024-01-06_21-29

Category

Debuggers

Tool's authors

mrexodia

Tool's description

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Download URL

https://github.com/x64dbg/x64dbg/releases/download/snapshot/snapshot_2024-01-06_21-29.zip

Download SHA256 Hash

467e41d68e489aad288cb0d868ea37ceb9dcda3757d9badc6314964d847e26b4

Dependencies

No response

Why is this tool a good addition?

We currently install x64dbg from chocolatey. That version is nearly 3 years old at this point and is clearly not maintained. MrExodia does release via github release very frequently, so issue is to suggest switching to that.

@stevemk14ebr stevemk14ebr added the 🆕 package New package request/idea/PR label Jan 22, 2024
@stevemk14ebr
Copy link
Contributor Author

I have also contacted the chocolately admins to ask for a package update there, but honestly, us using the github release would still be much better.

@Ana06
Copy link
Member

Ana06 commented Jan 23, 2024

Thanks for the suggestion @stevemk14ebr!

@vm-packages the date seems to be used as the version:
Screenshot 2024-01-23 at 13 39 11

should we use 2024.01.06 as version for the package? This is consistent with the current package.

If we want to update this package automatically, we would need to modify the update script to consider versions with -, as at the moment only . are allowed: https://github.com/mandiant/VM-Packages/blob/main/scripts/utils/update_package.py#L59

@Ana06 Ana06 added this to the FLARE-VM 2024 Q1 milestone Jan 23, 2024
@stevemk14ebr
Copy link
Contributor Author

A dotted date makes sense as the version

@Ana06
Copy link
Member

Ana06 commented Jan 23, 2024

@stevemk14ebr we are not using the chocolatey package, but this url: https://sourceforge.net/projects/x64dbg/files/snapshots/snapshot_$snapshotDate.zip

So modifying $snapshotDate in packages/x64dbg.vm/tools/chocolateyinstall.ps1 would also update the tool (and it is very easy to change it):

$snapshotDate = '2021-05-08_14-17'

The only advantage to change to GitHub releases would to benefit from automatic updates (which as said requires changes in the current script). @stevemk14ebr do you know if the maintainer is planing to continue using GH releases? I see only one recent release in GH, but some more in sourceforge.

@stevemk14ebr
Copy link
Contributor Author

I just asked, SF is the primary release channel (I was wrong about GH earlier). So we should bump to the latest hosted on SF

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
🆕 package New package request/idea/PR
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants