Videos

Published on March 18th, 2019 📆 | 3805 Views ⚑

0

Pull apart an EXE file with Ghidra (NSA Tool) (Reverse Engineering)

iSpeech.org

Pull apart an EXE with Ghidra (NSA Tool).

Subscribe now https://goo.gl/EG1EPH

We will also look at some more difficult executables and learn a little about the exe file format and what to look for.

We can blame John Hammond and the PWD challenge.
They get way more into the Assembly than I.
His Videos are worth a look. They find exploits and do lots of geeky things.

Want to know about the EXE header segments ?

PE Section names – re-visited

Want an alternative to Ghidra ?

https://reverseengineering.stackexchange.com/questions/1817/is-there-any-disassembler-to-rival-ida-pro

Tools used in this video

https://www.abyssmedia.com/scriptcryptor/
https://upx.github.io/
https://www.rarlab.com/download.htm

Please subscribe, ring the bell and share this video.
(and comment)

This Video brought to you by the Virus Doctor. You will get a 15% discount on a course if you use coupon code Mickyj15.
https://www.thevirusdoc.com/

Mickyj Whitehat playlist https://www.youtube.com/watch?v=gzfxJqU9sVQ&list=PLodEQVE4Lw01mtCM_LAn6e0tPNd5BfERv

Subscribe to my email list and I will send you a PDF of my top 10 tools for pulling a part Malware (find the email hat on www.mickyj.com)

Check out the Mickyj whitehat Merch at https://shop.spreadshirt.com.au/mickyj-whitehat

Show your support by joining in this competition https://youtu.be/1fmY0SS4HKQ

Also, feel free to send my video advert out to your friends. This advert gives enough detail to help the people with a keen interest join the community. https://youtu.be/Dqp_ve_aR4o

Help give this channel a fighting chance !
Please share in your community, forums, user groups and blogs !

** To help fund this adventure, here are some of the products I recommend. **

Antivirus on Amazon "TREND MICRO INTERNET SECURITY 2019 | 3 PC's | 1 Year | PC | Registration code - No CD" https://amzn.to/2TBrboR
Book on Amazon "The Hacker Playbook 3: Practical Guide to Penetration Testing" https://amzn.to/2TB0Res
I recommend Sonicwall firewalls and this Book on Amazon "Configuring SonicWALL Firewalls" https://amzn.to/2TEUJBT
Software on Amazon "Webroot Antivirus with Spy Sweeper Personal Edition" https://amzn.to/2THS6zk

Tools used
- virustotal
- Hybrid-analysis
- HexRays /IDA
- Process Hacker
- Process Monitor
- Wireshark
- many more specific to each video

..........: About the music :..........

Music Provided by the Following

Rock Intro 3 by Audionautix is licensed under a Creative Commons Attribution licence (https://creativecommons.org/licenses/)
Artist: http://audionautix.com/

source

Tagged with: apart • decompile • decrypt • Disassemble • disassemble executable windows • dissassemble • downloader • encrypted • engineering • EXE • exploit • File • ghidra • ghidra reverse engineering • ghidra review • ghidra software • ghidra tool • ghidra tutorial • Ghidra walkthrough • hacker • how to use Ghidra • how to use ghidra exe file • inspect • IT Professional • malware • Malware Analysis • malware fighter • mickyj • Mickyj whitehat • NSA • obfuscation • parts of an executable • Pull • reverse • Reverse Engineering • rootkit • security • software cracking • tool • trojan • virus