Requirements
Familiar with basic Linux Commands
Some Basics of Assembly and C would be helpful but not strictly necessary
Windows PC
Description
If you have never used Ghidra before and want to learn how to get started with using Ghidra to reverse engineer and analyse programs, then this is the course for you.
1. Introduction
2. Installing Kali Linux and Ghidra
3. Creating Projects and Importing Files
4. Decompiling Code and Renaming Symbols
5. Saving and Restoring Virtual Machine Snapshots
6. Configuring Ghidra to Highlight All Similar Variables Based On Selection
7. ASCII Code and Hex Numbers
8. ASCII Code and Array Indexes
9. Stepping into functions and adding comments
10. Ghidra on Windows
11. Reversing Workflows
12. Reversing GUI CrackMe's
13. Converting data types, Using Debuggers, Creating Functions and Function Graph06/13/2023 07:00 14. How to run windows exe programs on Linux
15. Reversing using combination of listing assembly and decompiled view
16. Resources For Further Study
Ghidra is a strong competitor to IDA Pro and is used by NSA itself for Reverse Engineering. And the best thing is that it is totally free. It is used for Reverse Engineering, Malware Analysis, and Exploits analysis. In this course, we will learn Ghidra by solving Linux and Windows CrackMe challenges. A CrackMe is a small program designed to test a programmer’s reverse engineering skills. This course is an introduction to Reverse Engineering for anyone who wants to get started in this field. It is suitable for software developers who want to learn how software works internally and also for reverse engineers who want to understand how Linux and Windows binaries work. This course will equip you with the knowledge and skill to use Ghidra in addition to whatever other tools you might already be familiar. It is also suitable for absolute beginners with no knowledge of reversing, as I will take you from zero to basics.
I will start off with showing you how to install Oracle Virtual Box. Then, installing Java SDK and Kali Linux in the Virtual Box. Then, we will reverse engineer Linux executable files.
Next, we will move on to installing Java SDK and Ghidra for Windows and reverse and analyze Windows programs. You will also learn how to reverse GUI CrackMe’s. You will learn how to use Function Graphs, Function Call Trees, Search String, Defined Strings and more. The course will also cover how to identify program entry point and also find the main functions for command line interface apps and WinMain for GUI based apps.
By the end of this course, you will have the basic skills to start reversing and analyzing Linux and Windows binaries.
What you will learn:
How to disassemble programs into assembly code
How to decompile programs to C code
Static Analysis
Understand Windows API’s
Identify entry points, main and WinMain functions
Use String Search and Defined Strings
Visualizing the Call Stack using Function Graph and Function Call Trees
Solving Crackmes
and more …
Suitable for:
Anyone interested to learn Reverse Engineering on Linux and Windows executable files.
Who this course is for:
Anyone interested to learn how to get started with Ghidra on Linux and Windows
Those who have never used Ghidra before and want to learn the basics
Students with some basic experience with other disassemblers
Created by Paul Chin
Last updated 11/2021
English
English [Auto]
Size: 2.16 GB + Included PDF, Txt files.
Familiar with basic Linux Commands
Some Basics of Assembly and C would be helpful but not strictly necessary
Windows PC
Description
If you have never used Ghidra before and want to learn how to get started with using Ghidra to reverse engineer and analyse programs, then this is the course for you.
1. Introduction
2. Installing Kali Linux and Ghidra
3. Creating Projects and Importing Files
4. Decompiling Code and Renaming Symbols
5. Saving and Restoring Virtual Machine Snapshots
6. Configuring Ghidra to Highlight All Similar Variables Based On Selection
7. ASCII Code and Hex Numbers
8. ASCII Code and Array Indexes
9. Stepping into functions and adding comments
10. Ghidra on Windows
11. Reversing Workflows
12. Reversing GUI CrackMe's
13. Converting data types, Using Debuggers, Creating Functions and Function Graph06/13/2023 07:00 14. How to run windows exe programs on Linux
15. Reversing using combination of listing assembly and decompiled view
16. Resources For Further Study
Ghidra is a strong competitor to IDA Pro and is used by NSA itself for Reverse Engineering. And the best thing is that it is totally free. It is used for Reverse Engineering, Malware Analysis, and Exploits analysis. In this course, we will learn Ghidra by solving Linux and Windows CrackMe challenges. A CrackMe is a small program designed to test a programmer’s reverse engineering skills. This course is an introduction to Reverse Engineering for anyone who wants to get started in this field. It is suitable for software developers who want to learn how software works internally and also for reverse engineers who want to understand how Linux and Windows binaries work. This course will equip you with the knowledge and skill to use Ghidra in addition to whatever other tools you might already be familiar. It is also suitable for absolute beginners with no knowledge of reversing, as I will take you from zero to basics.
I will start off with showing you how to install Oracle Virtual Box. Then, installing Java SDK and Kali Linux in the Virtual Box. Then, we will reverse engineer Linux executable files.
Next, we will move on to installing Java SDK and Ghidra for Windows and reverse and analyze Windows programs. You will also learn how to reverse GUI CrackMe’s. You will learn how to use Function Graphs, Function Call Trees, Search String, Defined Strings and more. The course will also cover how to identify program entry point and also find the main functions for command line interface apps and WinMain for GUI based apps.
By the end of this course, you will have the basic skills to start reversing and analyzing Linux and Windows binaries.
What you will learn:
How to disassemble programs into assembly code
How to decompile programs to C code
Static Analysis
Understand Windows API’s
Identify entry points, main and WinMain functions
Use String Search and Defined Strings
Visualizing the Call Stack using Function Graph and Function Call Trees
Solving Crackmes
and more …
Suitable for:
Anyone interested to learn Reverse Engineering on Linux and Windows executable files.
Who this course is for:
Anyone interested to learn how to get started with Ghidra on Linux and Windows
Those who have never used Ghidra before and want to learn the basics
Students with some basic experience with other disassemblers
Created by Paul Chin
Last updated 11/2021
English
English [Auto]
Size: 2.16 GB + Included PDF, Txt files.