Releases: Pinperepette/Aether
Releases · Pinperepette/Aether
Aether v2.0.0
What's New in v2.0.0
Malware Analysis Dashboard
- Automated threat scoring (0-100) with threat levels (Clean/Low/Medium/High/Critical)
- Unified dashboard combining all analysis results
Entropy Analysis
- Shannon entropy calculation for entire binary and individual sections
- Section assessment (packed, encrypted, normal)
- Block-level entropy heatmap
Indicators of Compromise (IoC) Extraction
- URLs, IP addresses, domains, emails
- File paths, registry keys, crypto wallets, mutex names
PE Anomaly Detection
- Suspicious section name detection (UPX, VMProtect, Themida, etc.)
- Entropy anomaly flagging with severity classification
Packer Detection
- Signature matching for UPX, VMProtect, Themida, ASPack, and more
- Import fingerprinting with confidence scoring
Enhanced PE Loader
- Import/Export browser with DLL grouping
- Imphash calculation for malware classification
- Improved PE format parsing
Other Improvements
- Enhanced binary loader
- Updated plugin system
- UI improvements in toolbar and main view
Aether v1.2.0
What's New in v1.2.0
AI-Powered Interactive Features
- AI Chat: Interactive conversation about your binary
- Explain Function: Natural language code explanation
- AI Variable Renaming: Smart suggestions for variable names
Improvements
- Unified AI menu in toolbar
- Conditional visibility (AI features only shown when API key configured)
- Fixed Settings button in toolbar
Installation
- Download Aether.dmg
- Open the DMG
- Drag Aether to Applications
If macOS says the app is damaged, run:
xattr -cr /Applications/Aether.app
v1.1.7: Frida Script Generator
What's New in v1.1.7
Frida Script Generator
- Dynamic Instrumentation: Generate ready-to-use Frida scripts for iOS and macOS
- 6 Hook Types:
- Trace: Log function calls, arguments, return values, and backtraces
- Bypass: Modify return values to bypass security checks
- Intercept: Advanced hooking with argument/return modification and context dump
- Memory Dump: Hexdump function memory at runtime
- String Patch: Find and patch strings in memory
- Anti-Debug: Bypass common anti-debugging (ptrace, sysctl, getppid, task_get_exception_ports)
- Platform Support: iOS and macOS with platform-specific optimizations
- AI-Enhanced Scripts: Optional AI-powered script generation with intelligent bypass detection
- Export Options: Copy to clipboard or save as .js file
How to Use
- Select a function in the sidebar
- Click "Frida" in toolbar
- Choose platform (iOS/macOS) and hook type
- Click "Basic" or "AI Enhanced"
- Run:
frida -U -f <app> -l script.js
Full Changelog: v1.1.6...v1.1.7
Aether v1.1.6
What's New
AI Security Analysis (Claude Integration)
- Claude AI Integration: Optional AI-powered security analysis using your Claude API key
- Bypass Detection: Identifies license checks, trial limitations, and anti-piracy mechanisms
- Patch Points: Suggests specific addresses and techniques for bypassing protections
- Security Mechanisms: Detects code signing, integrity checks, network validation
- Hardcoded Secrets: Finds obfuscated strings, API keys, and encryption keys
- Detailed Reports: Findings with severity levels (Critical/High/Medium/Low/Info)
- Secure Storage: API key stored in macOS Keychain (never in app bundle)
How to Use
- Go to Settings (⌘,) → AI tab
- Enter your Claude API key from console.anthropic.com
- Click "AI Analysis" in toolbar
- Review bypass techniques and patch points
Aether v1.1.5
What's New
- Async Loading: File loading now runs on background thread for responsive UI
- Performance: Removed debug logging for faster binary parsing
- Java Decompiler: Integrated Java bytecode decompilation for JAR files
- UI Improvements: Cleaner toolbar layout, improved function name display
- Bug Fixes: Various stability improvements
Aether v1.1.4
What's New in v1.1.4
Enhanced Decompiler
- Control Flow Recovery: Integrated ControlFlowStructurer for proper structure recovery (if/else, while, for loops)
- String Literal Detection: New string cache system for better string recognition in decompiled code
- Improved Type Inference: Better inference for parameters, local variables and return types
- Prologue/Epilogue Detection: Automatically skip boilerplate function setup code
- Smart Condition Building: Combines compare+jump patterns into readable conditions
- Better Variable Names: Improved register to variable name mapping for both x86_64 and ARM64
- Enhanced Operations: Full support for increment, decrement, logic and arithmetic operations
Installation
- Download Aether.dmg
- Open the DMG and drag Aether to Applications
- Launch Aether from Applications
Requirements: macOS 14.0 (Sonoma) or later
Aether v1.1.3
Conditional Jumps Patcher
- New Conditional Jumps View: View and patch conditional jumps (JZ, JNZ, JE, JNE, etc.)
- Flip Jump Conditions: Easily invert conditional jumps with one click
- Support for all x86 conditionals: Both short (7x) and long (0F 8x) jump opcodes
- Search and Filter: Find specific jumps by address or mnemonic
Aether v1.1.2
Fix crash when disassembling binaries with -128 displacement
- Fix Int8 overflow bug that caused SIGILL crash
- Add bounds checking for register names and condition codes
- Improved stability with large binaries
Aether v1.1.1
Branch Visualization
- Branch arrows with color-coded indicators
- Jump Table View (⇧⌘J)
- Inline target preview on hover
- Branch probability estimation
v1.1.0 Features
- Pseudo-code generation
- Call graph visualization
- Crypto detection
- Deobfuscation analysis
- Type recovery
- Export to IDA/Ghidra/Radare2/Binary Ninja
Aether v1.0.0
Aether v1.0.0 - Initial Release
Features
- Multi-architecture support (ARM64, x86_64)
- Binary formats: Mach-O, ELF, PE, JAR
- Control Flow Graph visualization
- Pseudo-C decompiler
- Modern dark UI
Requirements
- macOS 14.0 (Sonoma) or later
Download
Download Aether.dmg, open it and drag Aether to Applications.