OpenArk Versions Save

The Next Generation of Anti-Rookit(ARK) tool for Windows.

v1.3.4

4 months ago

BUILD 202312202152

  • 进程增强:增加内存使用、PEB、TEB、线程栈、结束线程等各种功能
  • 内核增强:增加全内存搜索、卸载驱动列表、镜像劫持、加载符号等各种功能
  • 扫描提升:优化PE扫描、支持解析内存化PE等功能
  • 解决部分不能进入内核模式的问题
  • BUG修复,还有其它很多未提及的功能
  • 特别说明:增加致谢名单,感谢对OpenArk的支持!
  • Impoved process manager: Added memory usage, PEB, TEB, CallStack, Terminate Thread etc.
  • Impoved kernel manager: Added memory search, Unloaded drivers, IFEO, Load symbols etc.
  • Improved scanner: Improved pe scanner, Added scanner for Memory PE.
  • Fixed some failure case when enter kernel mode.
  • Bugfixed and many other unmentioned features.
  • Special Notes: Added acknowledgements, thanks for your support!

v1.3.2

6 months ago

BUILD 202311111651

  • 进程增强:增加PPL、内存扫描、线程管理、模块卸载、句柄提权等各种功能
  • 内核增强:增加禁用/启用回调,Dump驱动、消息钩子、强删文件、文件/注册表管理、启动项、计划任务、服务管理等各种功能
  • 界面增强:优化UI,大幅提升流畅性
  • 支持最新Win11
  • BUG修复,还有其它很多未提及的功能
  • Keep Simple, Keep Evolutionary!
  • Impoved process manager: Added PPL,MemoryScan,Thread,unload module、change handle access etc.
  • Impoved kernel manager: Added kernel features, enable/disable callback, Dump driver,MessageHook,ForceDelete,File/Reg/Boot manager etc.
  • Improved UI substantially.
  • Support win11 latest release.
  • Bugfixed and many other unmentioned features.

v1.3.0

1 year ago

BUILD 202302271420

  • 进程管理增强,自动刷新,支持拖动选择窗口
  • 内核增加SSDT/Shadow/WFP/Filter/Minifilter/Timer等多种回调
  • 热键支持Win11
  • 工具库合并,更新换代,支持查询
  • 扫描器增加ELF、普通文件扫描
  • 增加数学计算等编程助手
  • 各种BUG修复,各种记不清的功能
  • 时隔一年,只能说,Good Luck 2023!
  • Impoved process manager, refresh automatically.
  • Added kernel features, SSDT/Shadow/WFP/Filter/Minifilter/Timer etc.
  • Added enum hotkey for win11.
  • Added tools repo, search supported.
  • Added ELF/FILE scanner .
  • Added match caculator in codekits.
  • Bugfixed and other features.
  • Good Luck 2023!

v1.2.2

2 years ago

BUILD 202201282330

  • 增加调试符号设置、开发了国内加速镜像节点
  • 程序支持在线升级
  • 工具目录支持修改、增加一些工具
  • 支持数据导出功能,例如热键、驱动列表等
  • 查看进程模块时可过滤系统模块
  • PE扫描器支持下载微软pdb符号文件
  • 支持拖拽文件查看文件占用
  • 新年快乐 2022!
  • Add debug system and cn-mirror repo features.
  • Add online upgrade feature.
  • Add change reverse tool folder and some tools.
  • Add feature that export data to file.
  • Optimized module, support hide system modules etc.
  • PE scanner support download microsoft pdb file
  • Support drag file to view unlock file
  • Happy Chinese New Year 2022!

v1.2.0

2 years ago

BUILD 202111060015

CHANGELOG

  • support win11 21H2
  • asmtools support arm/mips 16/32/64 be/le
  • add more tools for easy reversing.
  • fix enter kernel mode failed. issue #57 #25 #52 #58 #53 #50
  • ui optmized
  • fix bug #60

变更记录

  • 支持win11 21H2
  • 汇编工具支持arm/mips 16/32/64 大小端
  • 增加更多工具加速逆向分析
  • 修复进入内核模式失败问题 #57 #25 #52 #58 #53 #50
  • 部分界面优化
  • 修复BUG #60

v1.1.0

3 years ago

BUILD 202011191100

CHANGELOG

  • support win10 20H2
  • support portable config and tools, issue #23
  • code and ui optmized
  • add url encode/decode features
  • fix DPI view error bug. issue #24
  • fix can't get other sessions bug in memory section view
  • fix others bugs, some changes no longer mention...

变更记录

  • 支持Win10 20H2
  • 支持配置文件和工具可移植,issue #23
  • 代码和界面优化
  • 增加URL编解码功能
  • 修复高分辨率显示异常, issue #24
  • 修复无法获取其它会话的内存区bug
  • 修复其它bug, 还有一些没提到的功能点

v1.0.8

3 years ago

BUILD 202009022306

CHANGELOG

  • add kernel storage, aka file unlocker
  • add kernel memory editor, r0 and r3 supported
  • add kernel object, support read and write shared named map, object types view.
  • add kernel network as port and hosts file manager etc.
  • add more usefull tools for coder/reverse engineers
  • enhanced codec features, support separator
  • code and ui optmized
  • fix some bugs, some changes no longer mention...

变更记录

  • 增加内核存储模块,目前支持查看占用,文件解锁等功能(Unlocker)
  • 增加内存编辑器功能,支持内核和用户态
  • 增加内核对象模块,支持读写内存共享MAP,查看类型对象
  • 增加网络管理模块,支持查看端口进程、编辑hosts文件等
  • 增加大量方便的逆向开发人员的工具
  • 增强文字编码功能,支持分割符
  • 代码和界面优化
  • 修复部分bug, 还有一些没提到的功能点

v1.0.6

4 years ago

BUILD 202004211346

CHANGELOG

  • add reverse tools,update on going.
  • add fast reboot/poweroff, kill/reset explorer and so on.
  • enhanced cleaner features.
  • add run features in menu.
  • record the last opened tab and window size
  • code and ui optmized
  • fix some bugs

变更记录

  • 增加逆向工具,持续更新
  • 系统工具支持快速关机重启、结束资源管理器等功能
  • 优化垃圾清理功能
  • 菜单栏增加运行功能
  • 支持记录上一次打开的标签页、窗口大小等
  • 代码和界面优化
  • 修复部分bug

daliy

4 years ago

CHANGELOG [变更记录] - 202007031157

  • kernel: add enum/remove system hotkeys features,support Win7/Win8/Win8.1/Win10 (~2004) x86/x64 all versions)
  • 内核:增加枚举和摘除系统热键的功能,支持Win7/Win8/Win8.1/Win10 (~2004) x86/x64 所有版本)

v1.0.4

4 years ago

BUILD 201907042342

CHANGELOG

  • add kernel notifies view,memory view,install not signed driver, and more...

变更记录

  • 内核(XP、(Win7、8、10 x64)等版本已测试):
  • 新增签名、无签名驱动安装
  • 新增内核基本信息显示
  • 新增LoadImage、CreateProcess、CreateThread、CmpCallback回调查看、反汇编以及删除等。
  • 新增内核内存Dump功能(读取、反汇编)
  • 支持进程树切换时当前选定进程不丢失
  • 新增进程列表右键重启
  • 修复部分bug