Ghidra Software Reverse Engineering for Beginners: Analyze, identify, and avoid malicious code and potential threats in your networks and systems

David, A. P.

  • 出版商: Packt Publishing
  • 出版日期: 2021-01-08
  • 售價: $1,500
  • 貴賓價: 9.5$1,425
  • 語言: 英文
  • 頁數: 322
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1800207972
  • ISBN-13: 9781800207974
  • 相關分類: 資訊安全駭客 Hack
  • 立即出貨 (庫存=1)

買這商品的人也買了...

商品描述

Detect potentials bugs in your code or program and develop your own tools using the Ghidra reverse engineering framework developed by the NSA project


Key Features:

  • Make the most of Ghidra on different platforms such as Linux, Windows, and macOS
  • Leverage a variety of plug-ins and extensions to perform disassembly, assembly, decompilation, and scripting
  • Discover how you can meet your cybersecurity needs by creating custom patches and tools


Book Description:

Ghidra, an open source software reverse engineering (SRE) framework created by the NSA research directorate, enables users to analyze compiled code on any platform, whether Linux, Windows, or macOS. This book is a starting point for developers interested in leveraging Ghidra to create patches and extend tool capabilities to meet their cybersecurity needs.


You'll begin by installing Ghidra and exploring its features, and gradually learn how to automate reverse engineering tasks using Ghidra plug-ins. You'll then see how to set up an environment to perform malware analysis using Ghidra and how to use it in the headless mode. As you progress, you'll use Ghidra scripting to automate the task of identifying vulnerabilities in executable binaries. The book also covers advanced topics such as developing Ghidra plug-ins, developing your own GUI, incorporating new process architectures if needed, and contributing to the Ghidra project.


By the end of this Ghidra book, you'll have developed the skills you need to harness the power of Ghidra for analyzing and avoiding potential vulnerabilities in code and networks.


What You Will Learn:

  • Get to grips with using Ghidra's features, plug-ins, and extensions
  • Understand how you can contribute to Ghidra
  • Focus on reverse engineering malware and perform binary auditing
  • Automate reverse engineering tasks with Ghidra plug-ins
  • Become well-versed with developing your own Ghidra extensions, scripts, and features
  • Automate the task of looking for vulnerabilities in executable binaries using Ghidra scripting
  • Find out how to use Ghidra in the headless mode


Who This Book Is For:

This SRE book is for developers, software engineers, or any IT professional with some understanding of cybersecurity essentials. Prior knowledge of Java or Python, along with experience in programming or developing applications, is required before getting started with this book.

商品描述(中文翻譯)

使用由NSA項目開發的Ghidra逆向工程框架,檢測您的程式碼或程式中的潛在錯誤並開發自己的工具。

主要特點:
- 在Linux、Windows和macOS等不同平台上充分利用Ghidra
- 利用各種插件和擴展進行反組譯、組譯、反編譯和腳本編寫
- 通過創建自定義補丁和工具,滿足您的網絡安全需求

書籍描述:
Ghidra是由NSA研究總局創建的開源軟件逆向工程(SRE)框架,可讓用戶在任何平台上(Linux、Windows或macOS)分析編譯代碼。本書是開發人員利用Ghidra創建補丁和擴展工具能力,滿足其網絡安全需求的起點。

您將從安裝Ghidra並探索其功能開始,逐漸學習如何使用Ghidra插件自動化逆向工程任務。然後,您將了解如何設置環境以使用Ghidra進行惡意軟件分析,以及如何在無頭模式下使用它。隨著進展,您將使用Ghidra腳本自動化識別可執行二進制文件中的漏洞的任務。本書還涵蓋了高級主題,如開發Ghidra插件、開發自己的GUI、根據需要引入新的處理架構以及為Ghidra項目做出貢獻。

通過閱讀本書,您將掌握使用Ghidra分析和避免程式碼和網絡中潛在漏洞的技能。

學到的內容:
- 熟悉使用Ghidra的功能、插件和擴展
- 了解如何為Ghidra做出貢獻
- 專注於反向工程惡意軟件並進行二進制審計
- 使用Ghidra插件自動化逆向工程任務
- 熟練開發自己的Ghidra擴展、腳本和功能
- 使用Ghidra腳本自動尋找可執行二進制文件中的漏洞
- 了解如何在無頭模式下使用Ghidra

適合閱讀對象:
本書適合開發人員、軟件工程師或具有一定網絡安全基礎的IT專業人士。在閱讀本書之前,需要具備Java或Python的基礎知識,以及編程或開發應用程序的經驗。