Overview
This course covers the journey to a multi-architecture disassembler, focusing on topics such as disassembler basics, intuitive strategies, instruction sets, and identifying library routines. The course aims to teach participants the skills needed to understand and work with different architectures in the context of disassembling. The teaching method involves a combination of theoretical explanations and practical examples. This course is intended for developers, reverse-engineers, and individuals interested in malware analysis and cybersecurity.
Syllabus
Introduction
Disassembler
Agenda
Toy Example
Intuitive Strategy
Instructions
NonReturning Calls
NonReturning APIs
Type Libraries
Basic Block Visual Definition
Basic Block Skeletons
Branch Delay Slot
JAB
Code vs Data
Instruction Set
All code matters
Identifying library routines
Conclusion
Taught by
NorthSec