FreShow v1.42 RC
(c)Copyright 2008 jimmyleo
Website : http://www.jimmyleo.com/work/
合作站点：维莱实验室 http://www.velabs.cn/blog

本程序完全免费，可以任意传播，但请保留文件完整性和本说明文档。

『文件列表』
============
FreShow.exe - FreShow主程序
Readme.txt - 你现在正在阅读的说明文档

『安装说明』
============
解压缩即可使用。
执行FreShow.exe。

『软件说明』
============
FreShow为网页解密辅助工具。

『目前功能』
============
当前版本号 v1.42 RC

功能
基本的网页过滤和解密。

『关于作者』
============
jimmyleo 阿米

主页：http://www.jimmyleo.com/work/
电邮：jimi_pub@126.com
pm： 卡饭论坛 bbs.kafan.cn
合作站点：维莱实验室 www.velabs.cn/blog

下载地址：http://www.jimmyleo.com/work/
MD5 ： 81020e2c8a2b52a4126ad57beb046c9d

English Instructions

FreShow is a tool for script decoding and filtering.

The top of the tool is the place to input the URL, and you can click the “Check” button to check it.

The Chaos area is the original untreated script.

The Fresh area is the treated script.

If the script has been encoded/composed for many times, you can click the “<<”button on the top of the right-hand. And it will transfer the content in the Fresh area to Chaos area for further issue.


-Qeye- it can filter almost all the potential malicious links just like iframe, frameset, script, bodyonload, aniexploit, etc. All these will be added to the collection paddle. And its usability will be further developed in my future project.^_^

-FocusEXE- it can extract the link which may contain executable files instead of our naked eyes. It’s still a beta software so I am sorry that it may cause some problems because of the potential bugs.

-+=- it can connect the obscure form: “aaa”+”bbb” to aaabbb for example.

-NULs- it can delete all useless NULs and let the script fresh to see.

-Exchange- it can replace a with b and also be used in some own coding decoding function.



-ESC- it can decode %,%u,\x,&# HTML entry form and so on and it is defined as ESC in my opinion .In addition \x form can be done under XOR. If you know the xor value, you can directly input it in the edit area attached to “ESC” button. Or you can use ExXOR to enumerate the XOR value. "hello" comes out when it matches.

-ASCII- it can decode "1, 2, 3" form. The separator can be changed.

-ALPHA 2- alpha 2 arithmetic is just used in the REALPLAYER exploit which is wildly spread these days. It turns script to \x form first. Because some of them use XOR.

-US-ASCII, BASE64 & winwebmail- are other three arithmetics.

Go hunting! ^_^

FreShow is written by VC. If you want to help me to perfect the tool (code, graphics, tutorials etc.), or you have some suggestion and bug reporting, you can contact me E-mail: jimmyleo[at]msn[dot]cn
My site: http://www.jimmyleo.com/work/
Cooperation site: http://www.velabs.cn/blog

上一页  [1] [2]