Implementing Reverse Engineering

More practical less theory 

KEY FEATURES  

• In-depth practical demonstration with multiple examples of reverse engineering concepts.
• Provides a step-by-step approach to reverse engineering, including assembly instructions.
• Helps security researchers to crack application code and logic using reverse engineering open source tools. 
• Reverse engineering strategies for simple-to-complex applications like Wannacry ransomware and Windows calculator.

DESCRIPTION 

The book ‘Implementing Reverse Engineering’ begins with a step-by-step explanation of the fundamentals of reverse engineering. You will learn how to use reverse engineering to find bugs and hacks in real-world applications. This book is divided into three sections. The first section is an exploration of the reverse engineering process. The second section explains reverse engineering of applications, and the third section is a collection of real-world use-cases with solutions.

The first section introduces the basic concepts of a computing system and the data building blocks of the computing system. This section also includes open-source tools such as CFF Explorer, Ghidra, Cutter, and x32dbg. The second section goes over various reverse engineering practicals on various applications to give users hands-on experience. In the third section, reverse engineering of Wannacry ransomware, a well-known Windows application, and various exercises are demonstrated step by step.

In a very detailed and step-by-step manner, you will practice and understand different assembly instructions, types of code calling conventions, assembly patterns of applications with the printf function, pointers, array, structure, scanf, strcpy function, decision, and loop control structures. You will learn how to use open-source tools for reverse engineering such as portable executable editors, disassemblers, and debuggers.

WHAT YOU WILL LEARN

• Understand different code calling conventions like CDECL, STDCALL, and FASTCALL with practical illustrations.
• Analyze and break WannaCry ransomware using Ghidra.
• Using Cutter, reconstruct application logic from the assembly code.
• Hack the Windows calculator to modify its behavior.

WHO THIS BOOK IS FOR  

This book is for cybersecurity researchers, bug bounty hunters, software developers, software testers, and software quality assurance experts who want to perform reverse engineering for advanced security from attacks. Interested readers can also be from high schools or universities (with a Computer Science background). Basic programming knowledge is helpful but not required.

1. Impact of Reverse Engineering
2. Understanding Architecture of x86 machines
3. Up and Running with Reverse Engineering tools
4. Walkthrough on Assembly Instructions
5. Types of Code Calling Conventions
6. Reverse Engineering Pattern of Basic Code
7. Reverse Engineering Pattern of the printf() Program
8. Reverse Engineering Pattern of the Pointer Program
9. Reverse Engineering Pattern of the Decision Control Structure
10. Reverse Engineering Pattern of the Loop Control Structure
11. Array Code Pattern in Reverse Engineering
12. Structure Code Pattern in Reverse Engineering
13. Scanf Program Pattern in Reverse Engineering
14. strcpy Program Pattern in Reverse Engineering
15. Simple Interest Code Pattern in Reverse Engineering
16. Breaking Wannacry Ransomware with Reverse Engineering
17. Generate Pseudo Code from the Binary File
18. Fun with Windows Calculator Using Reverse Engineering

Jitender Narula is an experienced Cyber Security Specialist currently associated with the International Institute of Cyber Security (www.iicybersecurity.com) having 18+ years of industry experience. He has many years of cybersecurity experience with the government and the corporate world. In India, he has worked for law enforcement agencies (LEA), government entities like Delhi Police, ICAI (Institute of Chartered Accountants of India), Delhi University, and private organizations.

He has worked on the projects of AT&T, Citrix, Google, Conexant, IPolicy Networks (Tech Mahindra now), Narus (a wholly-owned subsidiary of The Boeing Company), and HFCL. Apart from this, he has conducted training programs for various corporations and government officials in India, Mexico.

He publishes articles, research documents, and interviews in the area of cybersecurity on Information Security Newspaper (www.securitynewspaper.com), Noticias de Seguridad informática (noticiasseguridad.com), Cibertip - Noticias de Hacking  (www.cibertip.com), Exploit One  (www.exploitone.com), iicybersecurity blog (https://www.iicybersecurity.com/blog-eng.html)  and also contributed to the Vishvas News, which is part of Dainik Jagran (Indian language daily newspaper)

LinkedIn Profile: Jitender Narula

Blog Link: https://www.securitynewspaper.com/2020/04/24/employee-data-leaked-apple-google-microsoftlinkedin-intel-cisco-verizon-oracle-hp-nvidia-affected/