IDA Pro
Grant Uland
What is IDA Pro?
• Interactive Dissassembler– Reverse Engineering
• Used to turn .exe binary to machine code
• While Expensive, IDA Pro is considered by many to be the best availiable– Professional License = $1129– Or free… if you’re sneaky
How does it work?
• IDA takes a .exe and generates 4 files– Name.id0: B-tree style database– Name.id1: Flags describing program bytes– Name.nam: Index of program locations– Name.til: local type definition info
What do you get?
• An incredibly complex program flow graphical interface
• Function Window• Hex view of the instructions• Imports, strings and enumerations
Source
• http://resources.infosecinstitute.com/basics-of-ida-pro-2/
Top Related