Active Members Fi8sVrs Posted January 6, 2019 Active Members Report Share Posted January 6, 2019 (edited) The US National Security Agency will release a free reverse engineering tool at the upcoming RSA security conference that will be held at the start of March, in San Francisco. From a report: Quote The software's name is GHIDRA and in technical terms, is a disassembler, a piece of software that breaks down executable files into assembly code that can then be analyzed by humans. The NSA developed GHIDRA at the start of the 2000s, and for the past few years, it's been sharing it with other US government agencies that have cyber teams who need to look at the inner workings of malware strains or suspicious software. GHIDRA's existence was never a state secret, but the rest of the world learned about it in March 2017 when WikiLeaks published Vault7, a collection of internal documentation files that were allegedly stolen from the CIA's internal network. Those documents showed that the CIA was one of the agencies that had access to the tool. Source Edited January 6, 2019 by OKQL 6 Quote Link to comment Share on other sites More sharing options...
Nytro Posted January 6, 2019 Report Share Posted January 6, 2019 Da, pare interesant. Pacat ca e facut in Java, insa e util ca e cross-platform. Din cate am vazut pe Twitter, o sa aiba UNDO! Iar cineva care a lucrat la NSA (Charlie Miller) zicea ca tool-ul are cel putin 13 ani, deci sper sa fie ceva de calitate. 1 1 Quote Link to comment Share on other sites More sharing options...
gigiRoman Posted January 7, 2019 Report Share Posted January 7, 2019 M-am jucat cu niste decompilatoare de delphi (dede si idr), dar tot ida isi face treaba. Faci patchuri f usor. Nu e nevoie sa faci debug mereu. S-a jucat careva cu ghidra? Quote Link to comment Share on other sites More sharing options...
Nytro Posted January 7, 2019 Report Share Posted January 7, 2019 Doar cei care lucreaza/au lucrat la NSA s-au jucat cu acel tool. Din martie, ne vom juca cu totii. Sper, ca pe langa "fully featured tool", sa arate si bine. Si obligatoriu: Dark Theme! Edit: Arata cam asa: https://wikileaks.org/ciav7p1/cms/page_9536070.html 3 Quote Link to comment Share on other sites More sharing options...
kasmir Posted January 8, 2019 Report Share Posted January 8, 2019 tot asta o sa fie mai bun https://rutracker.org/forum/viewtopic.php?t=5459068 2 Quote Link to comment Share on other sites More sharing options...
KtLN Posted January 8, 2019 Report Share Posted January 8, 2019 O intrebare ce face mai exact acest tool ? Explica cineva va rog Quote Link to comment Share on other sites More sharing options...
Nytro Posted January 8, 2019 Report Share Posted January 8, 2019 Copy/Paste de la IDA: " IDA is a Windows, Linux or Mac OS X hosted multi-processor disassembler and debugger that offers so many features it is hard to describe them all. " 1 Quote Link to comment Share on other sites More sharing options...
ARUBA Posted January 9, 2019 Report Share Posted January 9, 2019 https://wikileaks.org/ciav7p1/cms/page_11628795.html https://wikileaks.org/ciav7p1/cms/page_51183656.html Quote Link to comment Share on other sites More sharing options...
Nytro Posted January 10, 2019 Report Share Posted January 10, 2019 Aici e un probabil screenshot (vechi): https://twitter.com/megabeets_/status/1083119509756674053 Quote Link to comment Share on other sites More sharing options...
gigiRoman Posted January 10, 2019 Report Share Posted January 10, 2019 1 hour ago, Nytro said: Aici e un probabil screenshot (vechi): https://twitter.com/megabeets_/status/1083119509756674053 Sigur are black theme ... 😟 1 Quote Link to comment Share on other sites More sharing options...
Active Members Fi8sVrs Posted January 10, 2019 Author Active Members Report Share Posted January 10, 2019 (edited) 9 hours ago, gigiRoman said: Sigur are black theme ... 😟 ce m-au luat, mi-a sarit si firewall si tot @Nytro mai sunt cateva diagrame publice (noi) PS: aveti cupon, salvati $1.100 Edited January 10, 2019 by OKQL 1 Quote Link to comment Share on other sites More sharing options...
TheTime Posted January 10, 2019 Report Share Posted January 10, 2019 Nu-s eu adeptul teoriei conspiratiei, dar m-as mira sa nu aiba si vreun pic de backdoor prin el... Deci, cand va fi disponibil, poate veti incerca sa-l rulati intr-o masina ceva mai izolata. 3 Quote Link to comment Share on other sites More sharing options...
Nytro Posted January 10, 2019 Report Share Posted January 10, 2019 Eu sper sa fie open-source. La urma urmei, nu e cine stie ce 0day si daca nu au nimic de ascuns, il fac open-source. Eh, si asa se pot ascunde lucruri. 1 Quote Link to comment Share on other sites More sharing options...
gigiRoman Posted January 10, 2019 Report Share Posted January 10, 2019 15 minutes ago, Nytro said: Eu sper sa fie open-source. La urma urmei, nu e cine stie ce 0day si daca nu au nimic de ascuns, il fac open-source. Eh, si asa se pot ascunde lucruri. Asa cum e si androidul open source (doar asa de marketing). De aia se chinuie aia de la ubports sa puna ubuntu pe nexus 5 (2013 model wtf!?!?!?!?!?!?). De la fisierele alea blobs. Quote Link to comment Share on other sites More sharing options...
gigiRoman Posted March 8, 2019 Report Share Posted March 8, 2019 Au dat drumul si pentru pulime: https://ghidra-sre.org 1 Quote Link to comment Share on other sites More sharing options...
gigiRoman Posted March 9, 2019 Report Share Posted March 9, 2019 1 hour ago, BiosHell said: Atentie la neatentie (weird open port) Suge tot prin port. Ce port deschide? Nu am instalat inca. E bazat pe java, mare overhead. Portul Constanta deschis catre comert. Quote Link to comment Share on other sites More sharing options...