Before we just dive into using our newly acquired knowledge to analyze ELF binaries, I find it's important to have a plan or process in place to do so. Enter the methodology, a roadmap for accomplishing any sort of testing task. When performing penetration assessments, I follow an iteratively designed methodology to aid in accomplishing the goal of the assessment. Tackling binary analysis is no different. We need a methodology to guide us on our way, a plan that we can use iteratively much like some of the penetration assessment methodologies that exist today. Without a methodology, we may miss steps, miss information, or potentially infect ourselves with malware. As we dive into creating this plan, we also want to be sure to list some of the tools that will help us accomplish each phase of the methodology. That way, we will have the...

Binary Analysis Cookbook
By :

Binary Analysis Cookbook
By:
Overview of this book
Binary analysis is the process of examining a binary program to determine information security actions. It is a complex, constantly evolving, and challenging topic that crosses over into several domains of information technology and security.
This binary analysis book is designed to help you get started with the basics, before gradually advancing to challenging topics. Using a recipe-based approach, this book guides you through building a lab of virtual machines and installing tools to analyze binaries effectively. You'll begin by learning about the IA32 and ELF32 as well as IA64 and ELF64 specifications. The book will then guide you in developing a methodology and exploring a variety of tools for Linux binary analysis. As you advance, you'll learn how to analyze malicious 32-bit and 64-bit binaries and identify vulnerabilities. You'll even examine obfuscation and anti-analysis techniques, analyze polymorphed malicious binaries, and get a high-level overview of dynamic taint analysis and binary instrumentation concepts.
By the end of the book, you'll have gained comprehensive insights into binary analysis concepts and have developed the foundational skills to confidently delve into the realm of binary analysis.
Table of Contents (12 chapters)
Preface
Setting Up the Lab
32-bit Assembly on Linux and the ELF Specification
64-bit Assembly on Linux and the ELF Specification
Creating a Binary Analysis Methodology
Linux Tools for Binary Analysis
Analyzing a Simple Bind Shell
Analyzing a Simple Reverse Shell
Identifying Vulnerabilities
Understanding Anti-Analysis Techniques
A Simple Reverse Shell With Polymorphism
Another Book You May Enjoy
How would like to rate this book
Customer Reviews