Home Page Icon
Home Page
Table of Contents for
PART I INTRODUCTION
Close
PART I INTRODUCTION
by Chris Eagle, Kara Nance
The Ghidra Book
Cover Page
Title Page
Copyright Page
About the Authors
About the Tech Reviewer
BRIEF CONTENTS
CONTENTS IN DETAIL
ACKNOWLEDGMENTS
INTRODUCTION
About This Book
Who Should Read This Book?
What’s in This Book?
PART I INTRODUCTION
1 INTRODUCTION TO DISASSEMBLY
Disassembly Theory
The What of Disassembly
The Why of Disassembly
The How of Disassembly
Summary
2 REVERSING AND DISASSEMBLY TOOLS
Classification Tools
Summary Tools
Deep Inspection Tools
Summary
3 MEET GHIDRA
Ghidra Licenses
Ghidra Versions
Ghidra Support Resources
Downloading Ghidra
Installing Ghidra
Summary
PART II BASIC GHIDRA USAGE
4 GETTING STARTED WITH GHIDRA
Launching Ghidra
Creating a New Project
Analyzing Files with Ghidra
Desktop Behavior During Initial Analysis
Ghidra Desktop Tips and Tricks
Summary
5 GHIDRA DATA DISPLAYS
CodeBrowser
CodeBrowser Windows
Other Ghidra Windows
Summary
6 MAKING SENSE OF A GHIDRA DISASSEMBLY
Disassembly Navigation
Stack Frames
Ghidra Stack Views
Searching
Summary
7 DISASSEMBLY MANIPULATION
Manipulating Names and Labels
Comments
Basic Code Transformations
Basic Data Transformations
Summary
8 DATA TYPES AND DATA STRUCTURES
Making Sense of Data
Recognizing Data Structure Use
Creating Structures with Ghidra
C++ Reversing Primer
Summary
9 CROSS-REFERENCES
Referencing Basics
Reference Management Windows
Summary
10 GRAPHS
Basic Blocks
Function Graphs
Function Call Graphs
Trees
Summary
PART III MAKING GHIDRA WORK FOR YOU
11 COLLABORATIVE SRE
Teamwork
Ghidra Server Setup
Shared Projects
Project Window Menus
Project Repository
Summary
12 CUSTOMIZING GHIDRA
CodeBrowser
Ghidra Project Window
Tools
Workspaces
Summary
13 EXTENDING GHIDRA’s WORLDVIEW
Importing Files
Analyzers
Word Models
Data Types
Function IDs
Function ID Plugin
Summary
14 Basic Ghidra Scripting
Script Manager
Script Development
Introduction to the Ghidra API
Ghidra Scripting Examples
Summary
15 ECLIPSE AND GHIDRADEV
Eclipse
GhidraDev Menu
Example: Ghidra Analyzer Module Project
Summary
16 GHIDRA IN HEADLESS MODE
Getting Started
Writing Scripts
Summary
PART IV A DEEPER DIVE
17 GHIDRA LOADERS
Unknown File Analysis
Manually Loading a Windows PE File
Example 1: SimpleShellcode Loader Module
Example 2: Simple Shellcode Source Loader
Example 3: Simple ELF Shellcode Loader
Summary
18 GHIDRA PROCESSORS
Understanding Ghidra Processor Modules
Modifying a Ghidra Processor Module
Summary
19 THE GHIDRA DECOMPILER
Decompiler Analysis
The Decompiler Window
Summary
20 COMPILER VARIATIONS
High-Level Constructs
Compiler Build Options
Compiler-Specific C++ Implementation
Locating the main Function
Summary
PART V REAL-WORLD APPLICATIONS
21 OBFUSCATED CODE ANALYSIS
Anti–Reverse Engineering
Static Deobfuscation of Binaries Using Ghidra
Summary
22 PATCHING BINARIES
Planning Your Patch
Finding Things to Change
Applying Your Patch
Exporting Files
Example: Patching a Binary
Summary
23 BINARY DIFFERENCING AND VERSION TRACKING
Binary Differencing
Comparing Functions
Version Tracking
Summary
GHIDRA FOR IDA USERS
The Basics
Scripting
Summary
INDEX
Search in book...
Toggle Font Controls
Playlists
Add To
Create new playlist
Name your new playlist
Playlist description (optional)
Cancel
Create playlist
Sign In
Email address
Password
Forgot Password?
Create account
Login
or
Continue with Facebook
Continue with Google
Sign Up
Full Name
Email address
Confirm Email Address
Password
Login
Create account
or
Continue with Facebook
Continue with Google
Prev
Previous Chapter
INTRODUCTION
Next
Next Chapter
1 INTRODUCTION TO DISASSEMBLY
PART I
INTRODUCTION
Add Highlight
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click
here
login for view all page.
Day Mode
Cloud Mode
Night Mode
Reset