1. TechSpot is dedicated to computer enthusiasts and power users. Ask a question and give support. Join the community here.
    TechSpot is dedicated to computer enthusiasts and power users.
    Ask a question and give support.
    Join the community here, it only takes a minute.
    Dismiss Notice

Reverse engineer executables with the NSA's GHIDRA disassembler

By Cal Jeffrey · 8 replies
Jan 7, 2019
Post New Reply
  1. The NSA notes the GHIDRA framework is essentially a disassembler for Window, Mac, and Linux. It is able to break an executable file down into assembly code for analysis. Disassemblers are very useful for security researchers who want to dig into a piece of malware to see how it works.

    The NSA has already shared it with other government agencies. In fact, the public first heard about GHIDRA when WikiLeaks published Vault 7 in 2017, which were internal documents gathered from the Central Intelligence Agency.

    The software is written in Java, so can run on any system with JRE installed. GHIDRA can break down binaries for virtually any operating system including Windows, macOS, Linux, iOS and Android. It is also modular in design so users can add packages to it for extended functionality.

    "An interactive GUI enables reverse engineers to leverage an integrated set of features that run on a variety of platforms … and supports a variety of processor instruction sets."

    Government officials who have used GHIDRA told ZDNet that the software is well-liked. It is reportedly comparable to Hex-Rays’ IDA, albeit somewhat buggy. By going open-source, developers outside the NSA will be able to dig in and squash the bugs pretty quickly making it a viable free alternative.

    GHIDRA is not the only tool that the NSA has made available to the public. It has more than 30 other apps with various functionality and goofy names like Beer Garden, Maplesyrup, Lemongrenade, and Waterslide. The repositories for all NSA software can be found on its GitHub pages.

    The NSA will demo GHIDRA during the RSA Conference on March 5 in San Francisco. The software will be made available later that day.

    Permalink to story.

     
  2. NSA and opensource don't go together.
     
    xxLCxx likes this.
  3. cliffordcooley

    cliffordcooley TS Guardian Fighter Posts: 11,208   +4,873

    I didn't read where they said this software was opensource. The use of this software doesn't make the software being evaluated opensource either. What I did read is the software will be available free to use for evaluating other software.
     
  4. toooooot

    toooooot TS Evangelist Posts: 659   +317

    I dig the Bold guy's pony tail
     
  5. cliffordcooley

    cliffordcooley TS Guardian Fighter Posts: 11,208   +4,873

    Bold or bald?
     
  6. toooooot

    toooooot TS Evangelist Posts: 659   +317

    Im not sure I know the difference.
     
  7. cliffordcooley

    cliffordcooley TS Guardian Fighter Posts: 11,208   +4,873

    Bold as in showing an ability to take risks; confident and courageous
    . . . . or as in having a strong or vivid appearance
    Bald as in no hair

    So you could say he was bold for wearing a ponytail with a big bald spot on his head.
     
    Reehahs likes this.
  8. crtl+f By going open-source
    Edit: The article mostly focuses on the fact that this software will be free to use not that its opensource.
     
    Last edited by a moderator: Jan 8, 2019
    cliffordcooley likes this.
  9. Khanonate

    Khanonate TS Booster Posts: 142   +26

    No Such Agency
     
    Reehahs likes this.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...