Packt+ | Advance your knowledge in tech

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Mastering Reverse Engineering

You're reading from Mastering Reverse Engineering Re-engineer your ethical hacking skills

Product type Paperback

Published in Oct 2018

Publisher Packt

ISBN-13 9781788838849

Length 436 pages

Edition 1st Edition

Tools

Linux

Concepts

Ethical Hacking

Author (1):

Reginald Wong

View More author details

Table of Contents (15) Chapters

Preface

1. Preparing to Reverse FREE CHAPTER

2. Identification and Extraction of Hidden Components

3. The Low-Level Language

4. Static and Dynamic Reversing

5. Tools of the Trade

6. RE in Linux Platforms

7. RE for Windows Platforms

8. Sandboxing - Virtualization as a Component for RE

9. Binary Obfuscation Techniques

10. Packing and Encryption

11. Anti-analysis Tricks

12. Practical Reverse Engineering of a Windows Executable

13. Reversing Various File Types

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Decrypting with x86dbg

The preceding code snippet came from the HeapDemo.exe file. You can download this file from https://github.com/PacktPublishing/Mastering-Reverse-Engineering/tree/master/ch9. Go ahead and start debugging the file using x86dbg. This screenshot shows the disassembly code at the WinMain function right after loading the file in x86dbg:

From the executable's code entry point, we encounter heap allocation with the GetProcessHeap and RtlAllocateHeap APIs. This is followed by using a _memcpy function, which copies 0x1BE bytes of data from the address denoted by heapdemo.enc. Let's take a look at the memory dump from heapdemo.enc. To do that, right-click on push <heapdemo.enc>, then select Follow in Dump. Click on the given address, not the Selected Address. This should change the contents in the currently focused Dump window:

This should be the data that will be decrypted by the next lines of code that run in a loop. We should also see the same encrypted data at the allocated...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Wong

Wong

Reginald Wong has been in the software security industry for more than 15 years.Currently, Reggie is a lead anti-malware researcher at Vipre Security, a J2 Global company, covering various security technologies focused on attacks and malware. He previously worked for Trend Micro as the lead for the Heuristics team, dealing with forward-looking malware detection. Aside from his core work, he has also conducted in-house anti-malware training for fresh graduates. He is currently affiliated with CSPCert.ph, Philippines' CERT, and is a reporter for Wildlist.org. He has also been invited to speak at local security events, including Rootcon.

See other products by Wong

Other recommended products

Related to this chapter

Mastering Assembly Programming

Mastering Assembly Programming

The Assembly language is the lowest level human readable programming language on any platform. Knowing the way things are on the Assembly level will help developers design their code in a much more elegant and efficient way. This book will take readers on a journey to mastering the Assembly language.

Sep 2017 9h 40m

Antivirus Bypass Techniques

Antivirus Bypass Techniques

Antivirus Bypass Techniques follows a unique approach that will help you explore the security landscape, understand the fundamentals of antivirus software, and put antivirus bypass techniques to use. This book will enable you to bypass antivirus software solutions in order to develop efficient antivirus software.

Learning Malware Analysis

Learning Malware Analysis

Malware analysis and memory forensics are powerful analysis and investigation techniques used in reverse engineering, digital forensics, and incident response. This book teaches you the concepts, tools, and techniques to determine the behavior and characteristics of malware using malware analysis and memory forensics.

Jun 2018 17h 0m

Penetration Testing with Shellcode

Penetration Testing with Shellcode

Security has always been a major concern for your application, your system, or your environment. This book's main goal is to build your skills for low-level security exploits, finding vulnerabilities and covering loopholes with shellcode, assembly, and Metasploit.

Feb 2018 11h 32m

Mastering Malware Analysis

Mastering Malware Analysis

Malware analysis is a powerful investigation technique widely used in various security areas including digital forensics and incident response processes. Working through practical examples, you'll be able to analyze any type of malware you may encounter within the modern world.

Jun 2019 18h 44m

Malware Analysis Techniques

Malware Analysis Techniques

Comprehensive threat analysis is important for incident responders as it helps them to ensure that a threat has been entirely eliminated. This book shows you how to quickly triage, identify, attribute, and remediate threats with proper analysis techniques, and guides you in implementing your knowledge to prevent further incidents.

Jun 2021 9h 24m

Binary Analysis Cookbook

Binary Analysis Cookbook

Binary Analysis is a complex and constantly evolving topic, crossing into several realms of IT and information security. The recipes in this book will serve as a good reference for you to get a better understanding of various aspects related to analyzing malware, identifying vulnerabilities in code, exploit writing and reverse engineering.

Sep 2019 13h 12m

Preventing Ransomware

Preventing Ransomware

Ransomware is the most critical threat and its intensity has grown exponentially in recent times. This book provides comprehensive, up-to-the-minute details about different kinds of ransomware attack as well some notable ones from the past. It also talks about different aspects of cyber security that can help you prevent ransomware attacks.

Mar 2018 8h 52m

Ghidra Software Reverse Engineering for Beginners

Ghidra Software Reverse Engineering for Beginners

Ghidra is the NSA's state-of-the-art reverse engineering framework. It is open source, allowing the community to extend it with impressive range of features. This book offers a comprehensive introduction to anyone new to the Ghidra reverse engineering framework and malware reverse engineering.

Jan 2021 10h 44m

Modern Computer Architecture and Organization

Modern Computer Architecture and Organization

A no-nonsense, practical guide to help you learn the current and future processor and computer architectures that will enable you to design computer systems and develop better software applications across a variety of domains.

Apr 2020 18h 40m

Personalised recommendations for you

Based on your interests and search pattern

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

API Security for White Hat Hackers

API Security for White Hat Hackers

API Security for White Hat Hackers is a comprehensive guide that simplifies API security by showing you how to identify and fix vulnerabilities. From emerging threats to best practices, this book helps you defend and safeguard your APIs.

Jun 2024 13h 56m

Securing Cloud PCs and Azure Virtual Desktop

Securing Cloud PCs and Azure Virtual Desktop

This book covers the fundamentals of Windows 365 and Azure Virtual Desktop, addressing endpoint security challenges. You'll also explore advanced security measures for virtual environments.

Jun 2024 13h 12m

Cybersecurity Strategies and Best Practices

Cybersecurity Strategies and Best Practices

This book offers real-world case studies, holistic approaches, and practical guidance to boost your cybersecurity expertise. You'll learn how to align security strategies with business objectives and stay ahead of the evolving threat landscape.

May 2024 8h 24m

PowerShell for Penetration Testing

PowerShell for Penetration Testing

Designed for security professionals and aspiring pentesters, this book equips you with the skills and knowledge to exploit vulnerabilities, gain access, and navigate post-exploitation scenarios across diverse platforms.

May 2024 9h 56m

Securing Industrial Control Systems and Safety Instrumented Systems

Securing Industrial Control Systems and Safety Instrumented Systems

The book provides a solid understanding of SIS cybersecurity challenges and artifacts required to ensure the safety of mission-critical systems. It also serves as a strong foundation for anyone looking to boost their industrial security skill set.

Aug 2024 8h 32m

Incident Response for Windows

Incident Response for Windows

This exhaustive book helps you detect, respond to, and prevent cyberattacks on Windows-based systems by equipping you with the knowledge and tools needed to safeguard your organization's critical assets based on the actual threat landscape.

CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

CCSP (ISC)2 Certified Cloud Security Professional Exam Guide

Explore all aspects of cloud security to pass the CCSP exam and boost your career with this guide packed with use cases, mock exam questions, and tips. You'll be able to apply your new-found knowledge not only to pass the exam but also at work.

Jun 2024 18h 40m

Cryptography Algorithms

Cryptography Algorithms

Uncover history, principles, and cutting-edge insights in this new edition. Learn how algorithms defend against attacks and stay current with trends like IoT and quantum cryptography. Elevate your cybersecurity expertise with this essential resource.

Aug 2024 13h 40m