Questions tagged [program-analysis]
The program-analysis tag has no summary.
20 questions
0
votes
0
answers
62
views
HASP-HL in old Fun4Four Software
I got this today for ya guys https://mega.nz/file/ydU10BqA#VF87e1GJ0ls0LybkK-piQcvsgu_UrZE_6wJPfmIdQps
^^
To clarify for those panicking about Copyright or anything: This specific system is not being ...
2
votes
2
answers
179
views
Are there any tools for pseudocode manipulation?
I've spent about a month trying out Ghidra, IDA and BinaryNinja and I'm somewhat frustrated
I need to transform decompiler's output without changing resulting code's behaviour (i.e. to make it more ...
- 123
0
votes
0
answers
58
views
Reverse Engineering S/EX RE-MAN BOARD INTERFACE SR2 SL (MRD-45-2276)
S/EX RE-MAN BOARD INTERFACE SR2 SL (MRD-45-2276)
How can I access the raw data sent by the sensors to this board?
I also need the data sheet and schematic information of the board.
- 1
1
vote
0
answers
117
views
How to configure Ghidra Memory Map use Script API?
How to configure "Memory Map" for RAM image use Ghidra Script API? For example, here is Memory layout created by python script:
.text start: 0x80004000
.text end: 0x8079e4d0
.text length: ...
- 235
1
vote
0
answers
133
views
Windbg command .call usage and syntax
I'm using Windbg to track all functions that could result in the blue screen errors. My method is to call certain suspects manually through windbg .call command. However, I always got syntax error. ...
- 313
1
vote
1
answer
140
views
What is the output for this and how?
*(_BYTE *)(Key + Integer_count - 1) + 79
Here : Key = 0x22EC278 (dw 'Âx')
or
Stack[000015B8]:0019FC2C db 78h ; x
Stack[000015B8]:0019FC2D db 0C2h ; Â
Stack[000015B8]:0019FC2E db 2Eh ; .
Stack[...
- 31
3
votes
0
answers
90
views
Reverse engineering LCD memory map
I'm trying to get RAW data from a laser rangefinder device, but it has no PC connection ports. It has a small LCD screen onboard, where all data is displayed: distance, angle, battery level, etc. ...
- 131
2
votes
0
answers
61
views
How to get the APIs present in a particular block in a CFG using Angr?
I'm doing binary analysis based on Control Flow Graph (CFG). As I suppose to get the APIs from every block in the CFG. I'm finding it very difficult to do so using Angr as I don't have enough grip on ...
- 39
0
votes
1
answer
180
views
How to call your version of the existing function using proxy dll?
I have bits of code which decompiles a small part of the existing program. I have added it to the proxy dll. The code to the existing functions is hooked through Detour and looks like below (gui.h and ...
- 328
1
vote
1
answer
180
views
Problem with analyzing malware
We have a malware that blocks all analytics software in real time.
This software has blacklisted a large list of software that performs analysis (x64dbg, ida, serialport monitor, etc.)
This software ...
- 31
0
votes
2
answers
428
views
Is there a standalone cli tool which can detect which programming language a binary was written in?
I want to run a quick analysis on a very large number of binaries and determine the language of each one.
- 103
0
votes
0
answers
132
views
Jump without jmp near
I need to jump a
Hello,
I need to jump some lines that lock program in a loop status.
i use process hacker to find lines with string in binary but when i find this lines i have not jumps near, in ...
- 1
1
vote
1
answer
218
views
Can somebody recognize this programming language?
I'm curious in which programming language or script language is this written,
any idea?
[Dashboard\Alfa Romeo\147 93C86]
Size(280,270); // ширина и высота
Form
{
Form {
Group("Пробег",35,13,...
- 21
1
vote
2
answers
3k
views
explain c compile code
I compile c code to arm with this site https://godbolt.org/
int F(int a, int b)
{
int c=0;
for(int i=0;i<=10;i++)
{
c+=a+b;
}
return c;
}
the result was
F(int, ...
- 29
3
votes
1
answer
955
views
Disassembled code: Find out command-line arguments of program
Imagine a program is launched (on windows) with a few starting parameters, for example a number and a string.
When disassembling the program (With PEiD for example), how can I find out the starting ...
- 43