Introduction
This training deals with three distinct topics: First, we aim to equip students with the skills necessary to handle complex and non-standard situations encountered during static analysis. In the second part, we will delve into IDA's dynamic analysis capabilities and explore its debugging and tracing functionalities. In the third part, we will learn how to query information from IDA programmatically using IDA Python, and write some plugins using IDAPython and the C++ SDK.
Who would benefit from this course?
This class is designed for reverse engineers and security analysts ready to take their IDA Pro skills to the next level in complex analysis scenarios.
What you will learn
Upon completion of this course, participants will be able to perform in-depth static and dynamic analyses with IDA Pro. At the end of the class, students will be capable of handling sophisticated debugging scenarios and developing basic automations.
Prerequisites
At least basic understanding of IDA Pro, Good knowledge of C++ and/or Python
Location
Online
Date & Duration
November 4-6, 2024 10:00 UTC-5 (New York) - 3 days
About your trainer
Julian Kirsch has been using IDA Pro for his daily reverse engineering works for more than 15 years. At Hex-Rays, he works at the intersection of product, research, and development. He is an experienced instructor of reverse engineering classes, usually centered around deobfuscation and program analysis topics, with a focus on targets found in the real world. Julian graduated from TU Munich, where he has taught hands-on courses on reverse engineering and binary exploitation to students for six years. In his limited spare time, he organizes and participates in capture the flag contests alongside his teammates from hxp.
Course Content
- Decompile as call
- Skippable instructions
- Intrinsics
- Force decompilation
- Local Debuggers
- Remote Debuggers
- Tracers
- Appcall
- Extracting information from IDA Programmatically
- Functions
- Instructions
- Types
- Overview
- Setup
- Writing Simple Plugins
![](intermediate.png)
3 days
Date: November 4-6, 2024 10:00 UTC-5 (New York)
before Nov 1, 2024 15:00 UTC+1