Tags » IDA PRO

Navigating to static constructors (.cctor) in MSIL

When reverse engineering .Net code, either with an interactive disassembler or by programmatically parsing the MSIL headers. There is some low hanging fruit and some fruit that is out of reach, unless you are a giraffe. 618 more words


BIOS POST procedure reverse engineering

The first thing to do in order to create a faithfull emulator of a PS/1 model 2011, able to function with the originale ROM, is to do a reverse engineering of the BIOS. 40 more words

PS/1 2011

GINA Interception, Stolen Credentials and the Malware that Almost Got Away

A few years back, one of my IT co-workers remarked that after making a purchase on Amazon.com, his credit card data was stolen. He was naturally frustrated that this happened, but fortunately his credit card company caught the fraud early, notified him, and corrective steps were taken. 724 more words



That’s a test exe I made quickly. It calls printf, then with asm i inserted the nop instruction, the SSE sqrtss instruction, and then the legacy floating point fsqrt instruction. 186 more words

Debug command line input with IDA Pro

While attempting to debug a program that had fget with stdin I was having a hard time actually typing the input in. This is done automatically with GDB and I assumed IDA would have it too. 37 more words