Getting Started with Reverse Engineering

By Josh Stroschein
Reverse engineering binary code is a core skill for software security engineers, malware analysts and penetration testers. This course will teach you techniques for reversing binary code to identify program characteristics and behavior.
Play course overview
Course info
Rating
(15)
Level
Beginner
Updated
Aug 29, 2018
Duration
3h 40m
Table of contents
Course Overview
Course Overview 2m
Introduction
Course Introduction 2m Why Learn to Reverse Engineer 3m Module Introduction 1m The Reverse Engineering Process 7m Conclusion 0m
Assembly Basics
Module Introduction 1m CPU Architecture: Registers, Memory, and Machine Code 8m The Assembler and Program Segments 5m Instruction Set Architecture: Mnemonics, Operands, and Opcodes 3m Essential Instructions 13m Bitwise Operations, Endianness, and Size 3m Module Conclusion 1m
Working with Native Code
Module Introduction 1m The Portable Executable (PE) File Format 11m An Introduction to the Windows API 8m Demo: Parsing PE Files 7m Lab: Analyzing PE Files 9m Module Conclusion 1m
Using Debuggers
Module Introduction 1m Debugger Functionality 7m Debugger Commands 3m Using WinDbg Under Windows 4m Demo: Using a Debugger: Part 1 6m Demo: Using a Debugger: Part 2 7m Lab: Debug a Problem Program 8m Conclusion 1m
Practical Assembly
Introduction 0m Functions and the Stack Frame 8m Calling Conventions 0m Demo: The Call Stack and Stack Frames 8m Conditionals and Control Structures 0m Demo: Tracing Branching Logic 0m Arrays 4m Lab: Tracing a More Complex Program 8m Conclusion 2m
Reverse Engineering
Introduction 1m Getting Started with IDA Pro 6m Demo: Loading Your First Binary 7m Leveraging Strings and APIs 4m Demo: Following Strings and APIs 7m Strategies for Tracing Program Behavior 5m Lab: Reversing an Unknown Binary: Part 1 6m Lab: Reversing an Unknown Binary: Part 2 7m Conclusion 1m
Conclusion
Introduction 0m What You Learned 2m Leveling up Your Skills 2m Conclusion 0m
Description
Course info
Rating
(15)
Level
Beginner
Updated
Aug 29, 2018
Duration
3h 40m
Description

The ability to reverse engineer binary code is an essential skill for anyone responsible for software security or performing malware analysis, and it even plays a significant role in performing penetration tests and incident response. In this course, Getting Started with Reverse Engineering, you will gain the skills necessary to reverse engineer native code and determine program behavior. First, you will discover the basic elements of modern CPU architecture and the essentials of assembly language. Next, you will learn about native code, the portable executable file format and techniques to enrich your reverse engineering efforts. Finally, you will explore proficiency in the tools and techniques associated with performing static and dynamic reverse engineering to include IDA Pro and WinDbg. Throughout this course you will be able to follow along through comprehensive demonstrations and apply yourself through hands-on labs. By the end of this course, you will have the knowledge and skills necessary to reverse engineer native code binaries.

About the author
Josh Stroschein
About the author

Dr. Josh Stroschein is an Assistant Professor at Dakota State University where he teaches malware analysis, software exploitation, reverse engineering, and penetration testing. Josh also works as a malware analyst for Bromium, an end-point security company and is the Director of Training for the Open Information Security Foundation (OISF).

More from the author
Malware Analysis: Identifying and Defeating Code Obfuscation
Intermediate
2h 23m
Jul 12, 2019
Malware Analysis: Identifying and Defeating Packing
Intermediate
2h 18m
Feb 12, 2019
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone! My name is Dr. Josh Stroschein, and I want to welcome you to Getting Started with Reverse Engineering. I am an assistant professor in cybersecurity at Dakota State University, senior security researcher at VDA Labs, and a malware analyst for Bromium. The ability to reverse engineer binary code is an essential skill for anyone responsible for software security, performing malware analysis, and even plays a significant role at performing penetration tests and incidence response. In this course, we are going to learn how to quickly and effectively reverse engineer this binary code to determine program characteristics and behaviors. Some of the major topics that we will cover include the essential elements of modern CPU architecture and assembly language, native code and binary file formats, such as the portable executable file format, and techniques to enrich your reverse engineering efforts, and, finally, to gain proficiency and the tools and techniques associated performing both static and dynamic analysis. This will include both IDA Pro and WinDbg. Throughout this course, you'll be able to follow along through comprehensive demonstrations and apply yourself through hands-on labs. And by the end of this course, you will have the knowledge and skills necessary to reverse engineer native code binaries. Before beginning the course, some basic familiarization with assembly language will be helpful but certainly not required. I hope you'll join me on this journey to learn how to reverse engineer with Getting Started with Reverse Engineering at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT