RE Course - 4.2 - Debugging Crash Course
4.2 Debugging Crash Course If you’ve never used a debugger before you should go try it out. It’s important that you know how to use them. Here is a crash course in debugging. Breakpoint - Paus...
4.2 Debugging Crash Course If you’ve never used a debugger before you should go try it out. It’s important that you know how to use them. Here is a crash course in debugging. Breakpoint - Paus...
Debugger You’ve probably heard of a debugger before. It allows a program to step through their code and analyze what it’s doing line-by-line. We will be using these ourselves. Unfortunately for us,...
This chapter will cover some basic tools and what they are used for. Feel free to use any tools you want! Chapter 4 - Tools 4.0 Tools 4.1 Tool Types 4.2 Debugging 4.3 Tool Guides -> ...
I highly recommend taking an Assembly course before getting into reverse engineering. What I’ve covered will be enough to get you going and through this course, but that extra bit of knowledge can ...
When a function is called you could, theoretically, pass parameters via registers, the stack, or even on disk. You just need to be sure that the function you are calling knows how you are calling i...
3.4 Flags There are many flags used for various reasons. One flag that we have already talked about is the Zero Flag (ZF). Status Flags Here are the flags you should know. Note that when I say a...
3.3 Instructions The ability to read and comprehend Assembly code is vital to reverse engineering. There are roughly 1,500 instructions, however, a majority of the instructions are not commonly us...
The system’s memory is organized in a specific way. This is done to make sure everything has a place to reside in. Assembly Segments There are different segments/sections in which data or code is...
Depending on whether you are working with 64-bit or 32-bit assembly things may be a little different. As already mentioned this course focuses on 64-bit Windows. There are also two different syntax...
This chapter will act as a crash course or refresher for the Assembly language. This course focuses on x64 Assembly. This is in no way a full Assembly course and you should take a full Assembly cou...