Making complex data simple and compelling
From digital device to digital evidence
Unlock your vehicle's digital evidence potential
Forensic Analysis and Enhancement
Investigating and analyzing financial records
Gain access to the online accounts of deceased loved ones
Clear, precise evidence for a messy world
Expert reports to suit your specific needs
We can locate people anywhere
Stop worrying and learn the truth
Prevent, Detect, Respond To Cyberattacks
First response is crucial. Every minute counts.
The first response is critical to reduce liability
Detection & Removing Spyware Services
Reduce your electronic risk from digital transmittals
Find out who you are really talking to
Experienced, Confidential Services
Swift, professional incident response
Complicated cases require compelling digital facts
Find, recover and document digital evidence
Bring solid evidence before a judge
Cases can be investigated using Social Media
Nitrax wrote a guide for beginners: methodology and tools. In his post he is based solely on his own experience in the first steps in this strange and odd universe.
The methodology is simple, we load the first binary file and analyze it in two ways. The static analysis will help you to have a better overview and understanding on what going on within the binary, whereas the dynamic analysis will allow you to follow, step by step, the changing that occurs within each register, which system calls are used, etc.
Statistical analysis will help to spot odd pieces of code that have to be deeply analyzed through dynamic analysis. Nitrax decides to use binary ninja 182, as it is dedicated to static analysis, providing an awesome GUI, which is priceless when you have to deal with such amount of information. Dynamic analysis can be performed using various tools (eg gdb, radare2, etc). Nitraх describes the nuances of using these tools.
At the end of his work the author comes to the conclusion that reverse engineering is accessible for everyone. At the same time, it is necessary to continue developing in this field, since it will definitely help you to quickly identify where you have to focus your investigation to patch or bypass the security measure in place.
More.
Please enter the result of the calculation above.
Save my name, email, and website in this browser for the next time I comment.
Δ
Speak to a Specialist Now
Get Help Now