HOME
eBook
- eBook
- 오디오(북)
- 동영상
IT/프로그래밍
- 경제경영
- 자기계발
- 시/에세이
- 인문
- 종교
- 소설
- 국어/외국어
- 정치/사회
- 역사/문화
- 과학/공학
- IT/프로그래밍
- 건강/의학
- 가정/생활/요리
- 여행/취미
- 예술/대중문화
- 유아
- 아동
- 청소년
- 교재/수험서
- 외국도서
- 매거진
- 로맨스
- 로맨스판타지
- BL
- GL
- 판타지
- 무협
- 라이트노벨
- 추리
- 미스터리
- 스릴러
- 섹슈얼로맨스
- 단행본만화
- 웹툰
- 웹소설
컴퓨터공학
- IT일반/교양
- 컴퓨터입문/활용
- 컴퓨터수험서
- 컴퓨터공학
- 데이터베이스/아키텍처
- OS/네트워크
- 코딩/프로그래밍/언어
- OA (사무 보조 프로그램)
- 웹사이트/홈페이지/블로그
- 그래픽/디자인
- 영상/미디어
- 게임
- AI/AR/VR
- 기타

Ghidra Software Reverse Engineering for Beginners

Analyze, identify, and avoid malicious code and potential threats in your networks and systems

A. P. David 지음

Packt(GCO Science)

2021년 01월 08일 출간

(개의 리뷰)

( 0% 의 구매자)

eBook 상품 정보

파일 정보 pdf (6.50MB)

ISBN 9781800201842

쪽수 322쪽

지원기기 교보eBook App, PC e서재, 리더기, 웹뷰어

교보eBook App 듣기(TTS) 불가능

TTS 란?

텍스트를 음성으로 읽어주는 기술입니다.

전자책의 편집 상태에 따라 본문의 흐름과 다르게 텍스트를 읽을 수 있습니다.

전자책 화면에 표기된 주석 등을 모두 읽어 줍니다.

이미지 형태로 제작된 전자책 (예 : ZIP 파일)은 TTS 기능을 지원하지 않습니다.

'교보 ebook' 앱을 최신 버전으로 설치해야 이용 가능합니다. (Android v3. 0.26, iOS v3.0.09,PC v1.2 버전 이상)

PDF 필기 Android 가능 (iOS예정)

소득공제

소장

정가 : 19,000원

쿠폰적용가 17,100원

10% 할인 | 5%P 적립

이 상품은 배송되지 않는 디지털 상품이며,
교보eBook앱이나 웹뷰어에서 바로 이용가능합니다.

카드&결제 혜택

5만원 이상 구매 시 추가 2,000P
3만원 이상 구매 시, 등급별 2~4% 추가 최대 416P
리뷰 작성 시, e교환권 추가 최대 300원

상품정보
리뷰 (0)
이용안내

작품소개

이 상품이 속한 분야

Detect potentials bugs in your code or program and develop your own tools using the Ghidra reverse engineering framework developed by the NSA project

▶Book Description
Ghidra, an open source software reverse engineering (SRE) framework created by the NSA research directorate, enables users to analyze compiled code on any platform, whether Linux, Windows, or macOS. This book is a starting point for developers interested in leveraging Ghidra to create patches and extend tool capabilities to meet their cybersecurity needs.

You'll begin by installing Ghidra and exploring its features, and gradually learn how to automate reverse engineering tasks using Ghidra plug-ins. You'll then see how to set up an environment to perform malware analysis using Ghidra and how to use it in the headless mode. As you progress, you'll use Ghidra scripting to automate the task of identifying vulnerabilities in executable binaries. The book also covers advanced topics such as developing Ghidra plug-ins, developing your own GUI, incorporating new process architectures if needed, and contributing to the Ghidra project.

By the end of this Ghidra book, you'll have developed the skills you need to harness the power of Ghidra for analyzing and avoiding potential vulnerabilities in code and networks.

▶What You Will Learn
- Get to grips with using Ghidra's features, plug-ins, and extensions
- Understand how you can contribute to Ghidra
- Focus on reverse engineering malware and perform binary auditing
- Automate reverse engineering tasks with Ghidra plug-ins
- Become well-versed with developing your own Ghidra extensions, scripts, and features
- Automate the task of looking for vulnerabilities in executable binaries using Ghidra scripting
- Find out how to use Ghidra in the headless mode

▶Key Features
- Make the most of Ghidra on different platforms such as Linux, Windows, and macOS
- Leverage a variety of plug-ins and extensions to perform disassembly, assembly, decompilation, and scripting
- Discover how you can meet your cybersecurity needs by creating custom patches and tools

▶Who This Book Is For
This SRE book is for developers, software engineers, or any IT professional with some understanding of cybersecurity essentials. Prior knowledge of Java or Python, along with experience in programming or developing applications, is required before getting started with this book.

▶TABLE of CONTENTS
▷ Section 1: Introduction to Ghidra
- Chapter 1: Getting Started with Ghidra
- Chapter 2: Automating RE Tasks with Ghidra Scripts
- Chapter 3: Ghidra Debug Mode
- Chapter 4: Using Ghidra Extensions

▷ Section 2: Reverse Engineering
- Chapter 5: Reversing Malware Using Ghidra
- Chapter 6: Scripting Malware Analysis
- Chapter 7: Using Ghidra Headless Analyzer
- Chapter 8: Auditing Program Binaries
- Chapter 9: Scripting Binary Audits

▷ Section 3: Extending Ghidra
- Chapter 10: Developing Ghidra Plugins
- Chapter 11: Incorporating New Binary Formats
- Chapter 12: Analyzing Processor Modules
- Chapter 13: Contributing to the Ghidra Community
- Chapter 14: Extending Ghidra for Advanced Reverse Engineering

▶What this book covers
- Chapter 1, Getting Started with Ghidra, is a journey through the history of Ghidra and an overview of the program from the user perspective.

- Chapter 2, Automating RE Tasks with Ghidra Scripts, explains how to use Ghidra scripts to automate reverse engineering tasks and introduces script development.

- Chapter 3, Ghidra Debug Mode, covers how to set up a Ghidra development environment, how to debug Ghidra, and all about the Ghidra debug mode vulnerability.

- Chapter 4, Using Ghidra Extensions, provides you with background for developing Ghidra extensions, as well as showing you how to install and use it.

- Chapter 5, Reversing Malware Using Ghidra, demonstrates how to use Ghidra for malware analysis by reversing a real-world malware sample.

- Chapter 6, Scripting Malware Analysis, continues the previous chapter by scripting for both languages, Java and Python, the analysis of a shellcode found in the malware sample.

- Chapter 7, Using Ghidra Headless Analyzer, explains Ghidra Headless Analyzer and applies this knowledge to a set of malware samples acquired with a script developed during the chapter.

- Chapter 8, Auditing Program Binaries, introduces the topic of finding memory corruption vulnerabilities using Ghidra and how to exploit it.

- Chapter 9, Scripting Binary Audits, continues the previous chapter, teaching how to automate the bug hunting process via scripting, taking advantage of the powerful PCode intermediate representation.

- Chapter 10, Developing Ghidra Plugins, delves into Ghidra extension development by explaining that Ghidra plugin extensions are the way to get the most out of the Ghidra features implemented.

- Chapter 11, Incorporating New Binary Formats, shows how to write Ghidra extensions to support new binary formats, taking a real-world file format as an example.

- Chapter 12, Analyzing Processor Modules, discusses how to write Ghidra processor modules using the SLEIGH processor specification language.

- Chapter 13, Contributing to the Ghidra Community, explains how to interact with the community using social networks, chats, and how to contribute with your own development, feedback, bug reports, comments, and so on.

- Chapter 14, Extending Ghidra for Advanced Reverse Engineering, introduces advanced reverse engineering topics and tools such as SMT solvers, Microsoft Z3, static and dynamic symbex, LLVM, and Angr, and explains how to incorporate them with Ghidra.

▶ Preface
This book is a practical guide to the Ghidra reverse engineering tool. Throughout it, you will learn, from zero, how to use Ghidra for different purposes, such as malware analysis and binary auditing. As you progress through the initial chapters, you will also learn how to automate time-consuming reverse engineering tasks using Ghidra scripting and how to check the documentation to solve doubts and expand your knowledge on your own.

After reading the initial chapters, once you become an advanced Ghidra user, you will learn how to extend the capabilities of this reverse engineering tool to support new GUI plugins, binary formats, processor modules, and so on. After that part of the book, you will acquire Ghidra development skills, being able to debug Ghidra and develop your own features extending Ghidra at your pleasure.

After that, there is an entire chapter dedicated to learning how to contribute to the Ghidra community where you will learn how to offer your own code, feedback, found bugs, and so on to the National Security Agency (NSA) project, apart from interacting with other community members.

In the last chapter of the book, advanced reverse engineering topics will be introduced to open your mind to an extremely interesting world, being able to wonder about new useful Ghidra features you can develop to improve the Ghidra reverse engineering tool.

작가정보

저자(글) A. P. David

A. P. David is a senior malware analyst and reverse engineer. He has more than 7 years of experience in IT, having worked on his own antivirus product, and later as a malware analyst and reverse engineer. He started working for a company mostly reverse engineering banking malware and helping to automate the process. After that, he joined the critical malware department of an antivirus company. He is currently working as a security researcher at the Galician Research and Development Center in Advanced Telecommunications (GRADIANT) while doing a malware-related PhD. Apart from that, he has also hunted vulnerabilities for some relevant companies in his free time, including Microsoft's Windows 10 and National Security Agency's Ghidra project.

이 상품의 총서

전체선택

Klover리뷰 (0)

구매 후 리뷰 작성 시, e교환권 100원 적립

문장수집

구매 후 문장수집 작성 시, e교환권 100원 적립

소장 19,000 원