Reverse Engineering LAB Setup Tutorial (updated)

Рет қаралды 8,205

OALabs

Күн бұрын

Пікірлер: 55

@0nullBit 28 күн бұрын

nice to see that youre still active i just recently discovered your channel and had thought it died lol

@OALABS 28 күн бұрын

Oh! Lol nono we are very active on twitch/patreon just don't update KZbin too often because the platform sucks. Come hang out with us!

@elli430t Ай бұрын

VMware now allows you to use pro for personal use for free.

@Proferk Ай бұрын

He still needs the paid version though, cuz I'm pretty sure his use of it comes under commercial use

@elli430t Ай бұрын

@@Proferk Yeah could be, but yeah just posting for the people that are unaware of the free usage part

@OALABS Ай бұрын

It's already in the notes with links for the new download site, but yes I am aware : )

@Cools2009 Ай бұрын

Well thats strange. I've always heard Ghidra pronounced as "Gee-Druh" with a hard G sound, never "G-Hydra". Anyways, this is great timing for me as I need to make some progress with reversing soon. Thank you very much.

@OALABS Ай бұрын

Rumour has it that the original developers were fans of noted rapper and entrepreneur 50 Cent.

@Cools2009 Ай бұрын

@@OALABS Ah yes, now you've jogged my memory. They actually released an underground collab remix of In Da Club called IDA Club. Also they remixed Hate It Or Love It with the lyrics: "I'ma-debug-it til I can find your ROPs, and I'm-gonn'-shine until my breakpoint stop"

@OALABS Ай бұрын

🤣

@BinaryAdventure Ай бұрын

@@Cools2009 "Go ahead and RE me, I'm RE's anomaly., and you ain't stoppin' til the code is plain to see."

@traderfdax 14 күн бұрын

Hi, For the dynamic analysis VM, doesn't it also need at least a simulated Internet connection (like to a Remnux VM with inetsim) to learn more about what the malware is actually trying to do in terms of networking? Sorry if this seems like a noob question, I'm still learning.

@OALABS 12 күн бұрын

That can definitely be helpful, generally not necessary though. If you need a quick test and don't want to setup another VM you can also use github.com/mandiant/flare-fakenet-ng

@ko-kun5129 Ай бұрын

Love your videos

@pappupotty5329 Ай бұрын

ghidra being pronounced as gee-hydra has ruined my day

@OALABS Ай бұрын

Hail Hidra

@MoxxyPrime Ай бұрын

Great setup for reversing windows binaries. What would you recommend for reversing .elf or ARM binaries?

@OALABS Ай бұрын

Same exact static analysis setup and no local dynamic analysis. If you need local dynamic analysis the target OS of the binaries matters a lot, ie. are you reversing android native code, or linux native, etc. Each one needs a different sort of VM setup (obviously). For linux stuff I just use basic Ubuntu, and in the past I have used genymotion for android but not sure what the current hotness is?

@waqarahmad3547 Ай бұрын

Hello, I am new to reverse engineering which playlist I should follow & on patreon will Do it live works for beginners?

@OALABS Ай бұрын

www.patreon.com/posts/welcome-to-101248798

@kritikusi-666 Ай бұрын

Sergei The man. Just want to let you know VMware is actually free now. Even the pro version. Also, for the dirty VM, should use a Dirty background. Like dirty chicks. LOL

@OALABS Ай бұрын

Yeh it's in the notes, with the new links on the Broadcom site. You can also still buy it haha, thanks Broadcom 😂

@tj_1260 24 күн бұрын

Top

@OALABS 15 күн бұрын

Gun

@ahmedfarahat3680 12 күн бұрын

What version of Windows are you running or should I use... Where do I download the tools... And how do I subscribe to the course... Thank you, sir.

@OALABS 12 күн бұрын

Download links etc. can be found here (unlocked) www.patreon.com/posts/reverse-lab-101718688

@ahmedfarahat3680 11 күн бұрын

@@OALABS Very amazing, well do I have to have prior knowledge before starting or is this course for beginners who have no experience... Actually I am a penetration tester so I know.. But regarding analysis and reverse engineering I don't have

@OALABS 11 күн бұрын

Join our discord, there is a big pinned list of free! resources to get started (in the #re-faq channel). I would recommend starting with some of those before anything on our Patreon

@sayyedabdulrehman Ай бұрын

Thank you for the great video.. I have one question, how do we install tools in dynamic analysis vm if we cut off access to internet and host.. should we connect the internet, install the apps and then disconnect it again?

@OALABS Ай бұрын

Lol you just need to cut off internet when you are analyzing malware 😅

@emileberteloot6546 Ай бұрын

Don't you need network capture tools for the dynamic analysis (wireshark etc ...) ?

@OALABS Ай бұрын

I have Wireshark for analyzing pcaps from external services, but generally I don't use it for dynamic analysis. Nothing wrong with it, just usually it's a lot faster/simpler to hook the actual binary under analysis. Sub on Patreon and you'll see why 😉

@openai. 11 күн бұрын

Can you please give list of books in your background 😢

@OALABS 11 күн бұрын

it's a green screen

@gan7940 Ай бұрын

What hw do you look for in your work pc? I guess >32gb ram and >8 cores maybe

@OALABS Ай бұрын

I have a beastly machine because I also stream, but for my VMs I usually only give them one or two cores and 2G of ram so you don't really need a beefy host to run everything.

@lis6502 Ай бұрын

i am not too much into RE( i just do whatever i need at given time, mostly with one of coolest hexeditors for linux), but given that youtube somehow recommended me this video, i am feeling eligible to share my opinion. More content, less memes. Dude talks rather calmly, not too loud, i am focusing and out of the sudden BRRRRRT MEME TIME with 160% of volume. for fucks sakes, i understand the concept of not being too strict but at least have some respect for those of us who just so happen not run their audiostreams via compressor on a daily basis.

@DaveScottADV Ай бұрын

Relax, kiddo.

@polarrbtw Ай бұрын

theres like a total of 4 cuts in this video, calm down man

@OALABS Ай бұрын

tenor.com/view/swag-cat-mad-watch-this-swag-crash-lol-gif-20326813

@idkhidden Ай бұрын

Wake up babe OALabs just posted 4 days ago (can i get unbanned from the server)

@OALABS Ай бұрын

LOL! I forgot why you were banned... looked up the reason... **** ... ****** ... ****** .... never getting unbanned 🤣🤣🤣

@idkhidden Ай бұрын

@@OALABS 🥲

@OALABS 20 күн бұрын

Amnesty 2024 welcome back

@idkhidden 19 күн бұрын

@@OALABS i am so back

@albinosan4744 Ай бұрын

vmware is totally free for educational purposes.

@laudy1471 Ай бұрын

You can also add the cheat engine to the tool list

@OALABS Ай бұрын

@SSRSZ 28 күн бұрын

@OALABS 28 күн бұрын

@SSRSZ 28 күн бұрын

@@OALABSAhh KZbin mobile app bug, my comment is I use CPU Temp as reverse engineering tool to read current cpu usage / power to help understanding program behavior while debugging.