9 likes?? lmao what

This is fascinating! Thanks!

😂😂

Not only programmer, computer scientist too

Forreal lol..... Im looking at the command line print out like, "Is that not assembly." Then very next line "That's why we learn assembly." 🧐

basically the "refuse to elaborate" chad kinda thingy kek

You definitely need it, anyway why would you want to "reverse engineer" if you have no clue what to do with it? KZbinrs need to stop promoting "you don't need to know anything of X for this" and actually encourage people to learn what they need.

teehee

@@LowLevelLearning don't try to teehee yourself out of this one !

@@LowLevelLearningnot even funny. you just lied in the video

@@MisterChief711 Skill issue.

i can feel the sweat on your hands@@NickyDekker89

bro, 8 years of professional experience with me. Still struggling just to keep up with him. 😂

@@MohitKhare skill issue

@@artemis-arrow3098 no one likes u

@@artemis-arrow3098 challenge your

İ Felt dumb until ı read thıs tnx

Checks out lol

Super cool to c one of the original hackers (before it became erroneously equivalent to a “cracker”) talking about this.

How dare you.... checks notes... find and fix a bug in our software!

They were all bark and no bite. First sale doctrine.

This sounds a lot like what happened with Russell 'Rusty' Hardenburgh if I remember correctly. Very interesting either way.

but black-magic makes it sound cool so its even better

You get used to it. Just filling in the gaps made by compiler optimizations and custom data types most of the time by intelligent guessing.

Think of compiling as a mathematical function and decompiling as its inverse function. This is a fairly decent analogy except compilation and recompilation is within a much bigger scope of complexity where some deductions have to be inferred by its context.

It's actually kinda hard to make a good decompiler and the ones we do have are inherently unreliable So most of the time you're better off with just disassembly

@@narrativeless404 idk man, I've always found psuedo C to be decently reliable to be fair, I never tried ghidra or ida pro, binary ninja ftw

How do you check them simultaneously?

@@Oliver_Atkinson You can force a delay. So from the time you hit `enter` to the rejection the time will be like 1 second, which also makes brute force not an issue. But, usually this isn't an issue because the password is stored as a salted-hash password. So when you type aaaaaaa and then aaaaaab it would create two radically different hashed strings so you would not actually be able to simply compute the time to denial, because even if you could tell a particular password took longer to reject the hash is cryptographic, so you can't use that information in any useful way. It's another reason to never store passwords, because comparing plain-text passwords also leads to some security issues.

@davidolsen1222 Well, the even better answer is that a check in an executable will never hold, or more simply "you don't". But ofc server side stuff too (also, a delay will not hold up, the actual operation must be constant time)

Usually a password is hashed and salted, it does not check letter by letter... this would almost never/ never work or make a difference in execution time

One thing you can do is for example put both the password and the input in a 256 character buffer and then check all 256 characters for equality, regardless of whether an earlier check already failed. This is not a problem if you're using password hashes btw, which is the actual correct solution for password authentication.

😂😂😂😂

fr 😂

That's why IDA Pro is such a great set of tools. Besides the fact, by learning from zero programming knowledge, you're learning from the base (assembler), which is about as low level as a human being can get between program operations and the computer CPU (the next step being binary), you'll learn things that even advanced programmers are only casually (if at all) familiar with, as well as develop a skillset that can be used in digital forensic investigations, learn how to battle in the field against real-world malware, viruses and uncovering exploits and vulnerabilities that have never been seen or identified. I learnt "debug", when I was 11 years old to gain access to more games in MS-DOS 1.1, as I found this easier to learn ASM registers and HEX conversions and re-program instruction cycles as well as stack management and I/O, than fiddling with BASIC to draw sprites. Admittedly I went to a computer fair every month, for 6 months before I started to get any clue of how it worked but from there, in time and with a sincere dedication (with 3 months of glandular fever, which nearly prevented me from ever reaching teenage years), I honed my skills and put my OCD to good use, becoming one of the most prolific crackers in Australia and the UK (where my father lives and 12 years of my life were spent), during the 80s and the best part, was nobody knew who I was or would have guessed anything about my identity, being just a kid from rural Victoria! From that point, learning C and C++ was straightforward and much easier than had I taken a standard learning path, achieved in higher learning or as a student of an academic institution. Having worked in IT for over 25 years, I recommend this path as the first point in learning, or for anyone serious in developing skills, as this goes far beyond simply programming and opens your mind to a universe of new possibilities, which developing programming skills and knowledge of alone, likely will never provide anyway (reverse engineering is not a basic requirement of programming or used to teach software development, as I tend to believe they should be!).

ida is too far away from that "accurate"

आपने बिलकुल सही कहा , सरलता और सहजता ही दिव्यता। 👏👏👏

“..Simplicity and spontaneity is divinity.”; Very true.

@@JLSXMK8 👏👏👏

Hi firmware can it be decompiled

Right on

@@LowLevelLearning can you please answer where did you hide the password on C's source code? I reviews the video some times and I didn't see the password on original C source code... How did you manage to hide?

​@@thiagomoreira6640 he collapsed the getPass function in the source view. Lines 4-36 are hidden when we see it.

Brother Can anyone explain...how can we unlock item in codm ... through open source

Intermediate c programming kitabı var internette bedava. Orda güzel bilgiler vardı.

@@alpayarsoy2437 can you tell me which one is it?

Bro cmon it's like begging content for calculus 1 or trigonometry in 2023. C and C++ already have very depth guides on youtube and as book. These languages are out there like decades.

@@Moon-D0G 5 ay önce “im new at programming” diye baska bir videoya yorum atmissin simdi buraya gelip come on bro yillardir var bro yazmissin hava atiyosun 😁 adama hem icerik tavsiyesi vermisim hem de gecerli sebepler sunmusum, “begging” diyosun ulen bizim Türkler niye böyle anlamak imkansiz 😁

@@alpayarsoy2437 teşekkür ederim güzel yönlendirmeniz için 🙏🏼

I appreciate that!

Same here

@@agentstona Where was he messing with CPU registers? What memory address registers was he changing?

​@@LowLevelLearningeverything is open source if u understand machine code and the cpu architecture of the app.

What do you mean by encoding?

@@spaghettiking653 It could be as simple as an xor scheme, but no matter what method I use, it wouldn't be secure because the means to decode it would be in the binary. It's at best a first step.

Also best to save this part as a pre-production-build automation instead of unironically making a mess of your codebase

@@khatdubell thanks a lot man

Hello, can you help with guides to becoming a reverse engineer?

@@sobowalebayo9185 google

@@sobowalebayo9185 watch the video...

does that mean that some ASM scripts don't run on both Operating Systems?

@@arronalt ASM is not a script and typically no ASM code that does anything useful will run on two different OSes with the same CPU unless specially crafted to do so.

Came here to say this. The CPU or ISA company may well have an official ABI these days and some part of that might not be negotiable by the OS designer, but most of it is. And machine code doesn't need to follow it at all and in the case of malware should probably avoid as much official ABI style as possible in the most obfuscated parts.

Idafree is really limited. Ghidra is the way to go.

I love chicks

It's definitely click bait and a lie - just because you can reverse engineer something doesn't mean you have the legal ability to create and publish a derivative work.

I came down here to say that this is absolutely correct.

Great suggestion!

I think that the free IDA version doesn't include ARM support, that would be a big issue

Yes please!!

It is actually easier to decompile Flash games because they run on ActionScript, which like Java and C#, is first compiled to bytecode, which is then run on a VM. There are decompilers that give you the entire source code from a SWF file with full variable names and everything.

www.eff.org/files/2022/02/17/2022-02-16_apple_v_corellium_amicus_-_filed.pdf

reverse engineering, with how it is traditionally done, can violate copyright law, however pure clean room blackbox reverse engineering, in any instance does not break copyright law, as none of the code of the original program is actually used. clean room blackbox reverse engineering, is obviously astronomically more difficult to do, but legally it is airtight because all you are doing is reading the output of the original program, and then writing code based on what you think it is doing.

@@LowLevelLearning 1: see Bowers v. Baystate Technologies, Inc. 2: This is an amicus curiae, not a court case. it also discusses the benefits of reverse engineering and isn't a law. I never said that reverse engineering was bad, I said it was a breach of contract.

getting into it is easy, getting good is hard

Guy really expected the 13 min video to be 3 hours long

@@S.O.N.E Guy really thinks the 3 Hours video to be enuf for reverse engg

@@simulator8 guy really wouldn't want a 3 hour long video about RE

GCC does have many flags that can affect the way that the compiled code will look, some of the flags allow you to choose what level of optimization you want for your code, but more optimized code also takes more time to compile

a few come to mind. 1. rax is the alu register. 2. being a c program, all return values are stored in rax. 3. rax is generally safe to be changed whenever. 4. modern cpus can write faster to the same register if it was accessed shortly before. of course it's not perceivable but that's what intel claims. my guess is mostly because of 2 and 3 but also depends on the compiler's optimization lvl. of course the disassembly can be a bit "off" because ida doesn't always produce the most accurate results, but this is a very simple binary for that to be the case.

The explanation is simply that he compiled without optimizations. The mov, add and movzx instructions are unnecessary. In an actual release executable, each set of these 4 instructions can be reduced to a single cmp instruction, like cmp byte ptr [rdi+7], 100.

Hello do you use discord

@@adelitaz nope

Yeah, a calling convention is set based on the target processor AND target OS. x86/i686 is different than x86-64/amd64, which is different from ARM, etc. And Linux and Windows conventions can be different.

What you just said was... Have AI do all the work and you do nothing. Doesn't sound like reverse engineering.

I legit thought he'd show us a decompiler when he said you don't need programming skills or anything.

This channel youtube.com/@HEXORCIST?si=EnSIkaIECMiOmarE

Indeed!

Its pure power.

Thanks! Will do!

You kinda look around to see how it is being used, and pick whatever name makes sense for you. In this case you can see that it is being passed as the second parameter to scanf, which reads data from stdin (in this case user input) into the passed pointer. So it makes sense to call it a buffer. Personally, I would have called it user_input or input_buffer.

He may happen to have it for work or something

@@scootergirl3662 He’s using IDA freeware version, so that’s not likely.

He probably forgot to make it public.