All Questions
Tagged with binary-analysis dynamic-analysis
18
questions
3
votes
1
answer
637
views
How to reverse Engineer a Struct in IDA Pro?
How to identify and define a struct in IDA pro Decompiling during reverse engineering?
Please explain the easiest way to figure out the struct in IDA Pro decompilation!
To make life easier are there ...
3
votes
1
answer
2k
views
How to call a func in an executable binary?
I have a binary with a func that I can disassemble. What are simple ways for me to call it with arbitrary args and observe its return val and behavior?
Ideally, I'd like to do this:
Within gdb (or ...
- 267
0
votes
1
answer
228
views
x64dbgpy: application unresponsive when trying to automate inside breakpoint callback
When a breakpoint callback is triggered trying to automate the debugger inside the callback causes the application to become unresponsive. x64dbg continues functioning but the application itself doesn'...
- 203
5
votes
0
answers
1k
views
How do I perform concolic execution with Angr and collect constraints on input?
I have a program that takes a string (with some structure) as input. My aim is to collect information on what values each character in input is compared to as it gets parsed using concolic execution. ...
- 151
2
votes
1
answer
99
views
Detect interesting testcases
Suppose I have a ton of test cases and my target is closed-source. Well, I need to know which test cases discover new path in the execution of my target and which are duplicated. I know I have to use ...
- 21
1
vote
1
answer
885
views
bypassing anti-VM inside protected samples
This is a good starting point.
As you know:
Sandboxes and virtual environments (hypervisors) are full of artifacts that betray their analysis environment. Malware can protect itself against these by ...
- 163
1
vote
2
answers
122
views
Test malware files in host machine?
To analyze malware files we are using virtual machine and virtual box but some of malware detect the environment and will not do its work properly.
I want to know how to test malware files with out ...
- 121
2
votes
1
answer
2k
views
No apparent entry point for stripped, PIE binary using radare2
I am running on 64-bit Windows 7 and am using radare2 to attempt both static and dynamic analysis of a binary executable. The issue is that I cannot seem to find the entry point of where the program ...
- 131
1
vote
1
answer
1k
views
Could not find ld-linux-x86-64.so.2 in strace output
I did a ldd on /bin/cat and I see that dynamic loader library /lib64/ld-linux-x86-64.so.2 is a part of it.
ldd /bin/cat
linux-vdso.so.1 (0x00007ffe743f4000)
libc.so.6 => /lib64/libc.so.6 (...
- 121
2
votes
3
answers
271
views
Dynamic instrumentation tools which support reverse execution
I am trying to analyze some execution crash information, and to better identify the root cause of memory access error, I would like to reverse execute the program from the crash point.
For example, ...
- 2,485
2
votes
2
answers
368
views
Dynamic analysis of malware samples
I have thousands of Linux malware samples in ELF format. And I am thinking to use dynamic analysis (say, PIN) to obtain an execution trace of each malware sample.
However, I am afraid such activity ...
- 2,485
2
votes
1
answer
933
views
Analyzing a Login Process
I am reverse engineering a program that uses a custom auth protocol. This is a basic outline of the process:
Client takes input for username and password, then sends username to the auth server.
Auth ...
- 151
1
vote
1
answer
280
views
Where can I learn about code instrumentation?
Currently I am learning about profiling parallel programs. All the profilers heavily use all kinds of instrumentations but this topic is not well explained. Do you know any good sources from which I ...
- 113
1
vote
0
answers
664
views
How to get frame sync signal from a GoPro Dual HERO System sync cable? [closed]
I need to frame sync a GoPro Dual HERO System with an external data logger. So the main problem is to get the HERO frame synchronization signal (I guess there must be one in the cable) from their ...
- 111
3
votes
2
answers
2k
views
Automated Assembly/Disassemble library
I'm writing a handy reverse tool in C++ with manual assembling/disassembling shell, to automate my work!
I need an assembler library.
Is there any library, embedding in C++?
- 291
1
vote
2
answers
664
views
What is the address of main() and how many bytes does it allocate on the stack for its frame size?
Here is my objdump -d output but I do not know where to look. I understand assembly but it is a little confusing trying to find out what the values of registers are at certain points. If anyone knows ...
user4466
10
votes
1
answer
1k
views
Static analysis data combined with dynamic analysis knowledge
What I'm doing now is placing an awful lot of comments about function variable values, global variable values as comments in my IDA database, which I find ugly after a while and obviously not a best ...
- 2,038
9
votes
1
answer
2k
views
What are the differences between BitBlaze and BAP?
BitBlaze and BAP are two platforms to perform binary analysis. And, if I understand well, they are sharing lots of common features. What are their respective main features and in what do they differ ...
- 19.2k