Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Binary Analysis Cookbook Actionable recipes for disassembling and analyzing binaries for security risks

Product type Paperback

Published in Sep 2019

Publisher Packt

ISBN-13 9781789807608

Length 396 pages

Edition 1st Edition

Tools

Linux

Concepts

Application Security

Author (1):

Michael Born

View More author details

Table of Contents (12) Chapters

Preface

1. Setting Up the Lab

2. 32-bit Assembly on Linux and the ELF Specification FREE CHAPTER

3. 64-bit Assembly on Linux and the ELF Specification

4. Creating a Binary Analysis Methodology

5. Linux Tools for Binary Analysis

6. Analyzing a Simple Bind Shell

7. Analyzing a Simple Reverse Shell

8. Identifying Vulnerabilities

9. Understanding Anti-Analysis Techniques

10. A Simple Reverse Shell With Polymorphism

11. Another Book You May Enjoy

Leave a review - let other readers know what you think

Performing static analysis

The static analysis phase in our methodology is one where we get to really dive into figuring out how the binary functions. While the tools we have at our disposal are helpful, they are not perfect by any means. This phase in our methodology is a safer means of analysis than the dynamic analysis phase since we are disassembling the binary without actually executing the binary. However, as we'll see in later chapters, there are techniques that some binary authors employ to confuse static analysis tools, or to render these tools completely unreliable. When this happens, we may have to write our own disassembly tool(s). For the sake of this book, however, we'll keep things simple and as straightforward as possible. In later chapters, we will see an example of a binary that tries to confuse static analysis tools.

Up until this point, we've...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Born

Michael Born is a senior security consultant for SecureSky, Inc. Michael has earned several industry certifications and has co-taught offensive-focused Python programming classes at OWASP AppSec USA, and AppSec Europe. He enjoys coding in Python, IA32, IA64, PowerShell, participating in, and designing, capture the flag (ctf) challenges, teaching and mentoring others looking to embark on a career in information security, and presenting on various information security topics at local chapters of well-known information security groups. Michael has served on the chapter board for his local OWASP chapter, is a lifetime OWASP member, and participates in the local DC402 group.

See other products by Born