SlideShare a Scribd company logo

Disassembly Using IDA

Hossein Yavari, profile picture
Hossein Yavari

This document defines and compares disassemblers, debuggers, and decompilers. It then discusses the IDA Pro tool in more detail. A disassembler translates machine code back to assembly code, enabling static code analysis. A debugger also disassembles code but allows controlled execution and dynamic analysis. A decompiler translates machine code into high-level code. The document recommends IDA Pro as a powerful disassembler and debugger that has become a standard for reverse engineering. It also briefly mentions the open-source x64dbg debugger as an alternative.

Software
Related topics:
Malware Analysis Guide
1 of 11
Download to read offline
1
2
3
4
5
Most read
6
7
8
9
10
11
Disassembly UsingIDA Hossein Yavari March 2022 1
What is a disassembler? – A program that translates machine code back to assembly code. – It allows you to perform static code analysis. – Static code analysis: a technique you can use to interpret the code to understand the program's behavior, without executing the binary. 2
What is a debugger? – A debugger is a program which also disassembles the code; apart from that, – It allows you to execute the compiled binary in a controlled manner. – It allows you execute either a single instruction or selected functions, instead of executing the entire program. – A Debugger allows you to perform dynamic code analysis, and helps you examine the aspects of the suspect binary while it is running. 3
What is a de- compiler? – A program that translates the machine code into the code in a high-level language (pseudocode). – De-compilers can greatly assist you with the reverse engineering process and can simplify your work. 4 Source: Canzanese, Raymond & Oyer, M & Mancoridis, Spiros & Kam, Moshe. (2005). A survey of reverse engineering tools for the 32-bit Microsoft Windows environment.
IDA Pro tool – Interactive Disassembler (IDA) – A powerful disassembler and a versatile debugger. – It is used for reverse engineering. – https://hex-rays.com/ida- pro/ 5
IDA Pro tool (Cont.) – IDA Pro has become the de-facto standard for the analysis of hostile code, vulnerability research and commercial off-the-shelf validation. 6
IDA Versions 7
IDAPro 8
IDA alternative – x64dbg – An open-source x64/x32 debugger for windows. – https://x64dbg.com/ 9
ThankYou 10
11 References https://www.packtpub.com/product/learning-malware-analysis/9781788392501

More Related Content

PPTX
EMBEDDED SYSTEMS Lecture 4 IDE AND MICROCONTROLLERS.pptx
JacobAsaah
 
PPTX
Java Code Quality Tools
Anju ML
 
PDF
Static code analysis
Prancer Io
 
PDF
WhitePaperTemplate
Jo Marques
 
PPTX
A CASE STUDY ON EMBEDDED SYSTEM SOFTWARE STACK LAYERS
MOHAMMED FURQHAN
 
PDF
Null Mumbai Meet_Android Reverse Engineering by Samrat Das
nullowaspmumbai
 
PDF
report
Diptika Shukla
 
PPTX
Reverse engineering in software engineering vaibhav
Mani Kanth
 
EMBEDDED SYSTEMS Lecture 4 IDE AND MICROCONTROLLERS.pptx
JacobAsaah
 
Java Code Quality Tools
Anju ML
 
Static code analysis
Prancer Io
 
WhitePaperTemplate
Jo Marques
 
A CASE STUDY ON EMBEDDED SYSTEM SOFTWARE STACK LAYERS
MOHAMMED FURQHAN
 
Null Mumbai Meet_Android Reverse Engineering by Samrat Das
nullowaspmumbai
 
report
Diptika Shukla
 
Reverse engineering in software engineering vaibhav
Mani Kanth
 

Similar to Disassembly Using IDA (20)

PPTX
Software ppt
switipatel4
 
PPTX
The Case for Low-code Development
Linx
 
PPTX
The pragmatic programmer
LeylimYaln
 
PDF
How Virtual Compilation Transforms Static Code Analysis
Checkmarx
 
PPTX
debugging methodology for malware analysis.pptx
KotichukkalaJosef
 
PPTX
The Power of Feedback Loops
AgileCymru
 
PPTX
Unit iv
Sangeetha Rangarajan
 
PPTX
Top 10 static code analysis tool
scmGalaxy Inc
 
PDF
Programming vs Coding: Unveiling The Key Differences
FredReynolds2
 
DOC
Sepm t1
sapariyapiyushluck
 
PPTX
software engineering introduction is a gateway of engineer
rajajacobc
 
DOCX
Evolving role of Software,Legacy software,CASE tools,Process Models,CMMI
nimmik4u
 
PDF
Journey from Monolith to a Modularized Application - Approach and Key Learnin...
mfrancis
 
PDF
Gui based debuggers
Mysa Vijay
 
PPTX
Top 10 Mobile Hacking Tools – 2025 Edition
anishachhikara2122
 
PPTX
Top 10 Software to Detect & Prevent Security Vulnerabilities from BlackHat US...
Mobodexter
 
PPTX
Android Penetration testing - Day 2
Mohammed Adam
 
PDF
DEVELOPMENT TOOLS FOR MICROCONTROLLERS.pdf
Srikrishna Thota
 
PDF
IRJET- Development of Uncrackable Software
IRJET Journal
 
PPTX
"AI BASED SOFTWARE BUILDING AND CONSTRUCTION" -- Chapter 6.pptx
SanaRizwan21
 
Software ppt
switipatel4
 
The Case for Low-code Development
Linx
 
The pragmatic programmer
LeylimYaln
 
How Virtual Compilation Transforms Static Code Analysis
Checkmarx
 
debugging methodology for malware analysis.pptx
KotichukkalaJosef
 
The Power of Feedback Loops
AgileCymru
 
Unit iv
Sangeetha Rangarajan
 
Top 10 static code analysis tool
scmGalaxy Inc
 
Programming vs Coding: Unveiling The Key Differences
FredReynolds2
 
Sepm t1
sapariyapiyushluck
 
software engineering introduction is a gateway of engineer
rajajacobc
 
Evolving role of Software,Legacy software,CASE tools,Process Models,CMMI
nimmik4u
 
Journey from Monolith to a Modularized Application - Approach and Key Learnin...
mfrancis
 
Gui based debuggers
Mysa Vijay
 
Top 10 Mobile Hacking Tools – 2025 Edition
anishachhikara2122
 
Top 10 Software to Detect & Prevent Security Vulnerabilities from BlackHat US...
Mobodexter
 
Android Penetration testing - Day 2
Mohammed Adam
 
DEVELOPMENT TOOLS FOR MICROCONTROLLERS.pdf
Srikrishna Thota
 
IRJET- Development of Uncrackable Software
IRJET Journal
 
"AI BASED SOFTWARE BUILDING AND CONSTRUCTION" -- Chapter 6.pptx
SanaRizwan21
 
Ad

More from Hossein Yavari (20)

PDF
What is Matroska?
Hossein Yavari
 
PDF
SIPREC RTPEngine Media Forking
Hossein Yavari
 
PDF
Windows Forensics
Hossein Yavari
 
PPTX
SIP over TLS
Hossein Yavari
 
PPTX
Desjardins Data Breach
Hossein Yavari
 
PDF
Introduction to Metasploit
Hossein Yavari
 
PDF
Which IT Certification is Better for You?
Hossein Yavari
 
PPTX
Introduction to Snort
Hossein Yavari
 
PDF
DLL Injection
Hossein Yavari
 
PPTX
SQL Injection in JAVA
Hossein Yavari
 
PPTX
Malware Static Analysis
Hossein Yavari
 
PDF
Creativity and Role of the Leaders
Hossein Yavari
 
PDF
IPsec for IMS
Hossein Yavari
 
PDF
eSIM Deep Dive
Hossein Yavari
 
PDF
Yeastar Technical Training Course
Hossein Yavari
 
PDF
SENA Cloud UC
Hossein Yavari
 
PDF
FreePBX Disaster Recovery
Hossein Yavari
 
PDF
eSIM Overview
Hossein Yavari
 
PDF
LTE Architecture Overview
Hossein Yavari
 
PDF
Introduction to DIAMETER
Hossein Yavari
 
What is Matroska?
Hossein Yavari
 
SIPREC RTPEngine Media Forking
Hossein Yavari
 
Windows Forensics
Hossein Yavari
 
SIP over TLS
Hossein Yavari
 
Desjardins Data Breach
Hossein Yavari
 
Introduction to Metasploit
Hossein Yavari
 
Which IT Certification is Better for You?
Hossein Yavari
 
Introduction to Snort
Hossein Yavari
 
DLL Injection
Hossein Yavari
 
SQL Injection in JAVA
Hossein Yavari
 
Malware Static Analysis
Hossein Yavari
 
Creativity and Role of the Leaders
Hossein Yavari
 
IPsec for IMS
Hossein Yavari
 
eSIM Deep Dive
Hossein Yavari
 
Yeastar Technical Training Course
Hossein Yavari
 
SENA Cloud UC
Hossein Yavari
 
FreePBX Disaster Recovery
Hossein Yavari
 
eSIM Overview
Hossein Yavari
 
LTE Architecture Overview
Hossein Yavari
 
Introduction to DIAMETER
Hossein Yavari
 
Ad

Recently uploaded (20)

PDF
Why TechBuilder is the Future of Pickup and Delivery App Development (1).pdf
TechBuilder
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PDF
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PDF
PTS Company Brochure 2025 (1).pdf.......
pts464036
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PDF
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
PPTX
Essential Infomation Tech presentation.pptx
pradeepjava2016
 
PDF
AI in Product Development-omnex systems
omnex systems
 
PDF
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
PDF
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
PDF
Adobe Premiere Pro 2025 (v24.5.0.057) Crack free
ghrom2211g
 
PDF
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 
PDF
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
PDF
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
PDF
Nekopoi APK 2025 free lastest update
umarali35kp
 
PPTX
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PDF
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
PDF
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
PPTX
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
Why TechBuilder is the Future of Pickup and Delivery App Development (1).pdf
TechBuilder
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PTS Company Brochure 2025 (1).pdf.......
pts464036
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
Essential Infomation Tech presentation.pptx
pradeepjava2016
 
AI in Product Development-omnex systems
omnex systems
 
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
Adobe Premiere Pro 2025 (v24.5.0.057) Crack free
ghrom2211g
 
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
Nekopoi APK 2025 free lastest update
umarali35kp
 
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 

Disassembly Using IDA

  • 2. What is a disassembler? – A program that translates machine code back to assembly code. – It allows you to perform static code analysis. – Static code analysis: a technique you can use to interpret the code to understand the program's behavior, without executing the binary. 2
  • 3. What is a debugger? – A debugger is a program which also disassembles the code; apart from that, – It allows you to execute the compiled binary in a controlled manner. – It allows you execute either a single instruction or selected functions, instead of executing the entire program. – A Debugger allows you to perform dynamic code analysis, and helps you examine the aspects of the suspect binary while it is running. 3
  • 4. What is a de- compiler? – A program that translates the machine code into the code in a high-level language (pseudocode). – De-compilers can greatly assist you with the reverse engineering process and can simplify your work. 4 Source: Canzanese, Raymond & Oyer, M & Mancoridis, Spiros & Kam, Moshe. (2005). A survey of reverse engineering tools for the 32-bit Microsoft Windows environment.
  • 5. IDA Pro tool – Interactive Disassembler (IDA) – A powerful disassembler and a versatile debugger. – It is used for reverse engineering. – https://hex-rays.com/ida- pro/ 5
  • 6. IDA Pro tool (Cont.) – IDA Pro has become the de-facto standard for the analysis of hostile code, vulnerability research and commercial off-the-shelf validation. 6
  • 9. IDA alternative – x64dbg – An open-source x64/x32 debugger for windows. – https://x64dbg.com/ 9