About this book
The NSA research directorate has recently created Ghidra, an open-source software reverse engineering (SRE) framework that enables users to analyze compiled code no matter their platform of choice (Linux, Windows, macOS). This book will be a starting point for developers interested in leveraging Ghidra to create patches and extend tool capabilities to fit their cybersecurity needs.
You will begin by installing Ghidra and exploring its features. Next, you will learn how to automate reverse engineering tasks using Ghidra plug-ins. You will then understand how to set up an environment to perform malware analysis using Ghidra and how you can use Ghidra in headless mode. As you progress, you will explore how to automate the task of identifying vulnerabilities in executable binaries using Ghidra scripting. Toward the end of the book, you will learn advanced topics such as developing Ghidra plug-ins, developing your own GUI, incorporating new process architectures if needed, and contributing to the Ghidra project.
By the end of this Ghidra book, you will have the skills you need to use Ghidra's capabilities for analyzing, understanding, and avoiding potential vulnerabilities in code and networks.
- Publication date:
- December 2020