Binary Analysis Cookbook:Actionable recipes for disassembling and analyzing binaries for security risks
Release Finelybook 出版日期：2019-09-20
pages 页数：396 pages
Explore open-source Linux tools and advanced binary analysis techniques to analyze malware, identify vulnerabilities in code, and mitigate information security risks
Binary analysis is the process of examining a binary program to determine information security actions. It is a complex, constantly evolving, and challenging topic that crosses over into several domains of information technology and security.
This binary analysis book is designed to help you get started with the basics, before gradually advancing to challenging topics. Using a recipe-based approach, this book guides you through building a lab of virtual machines and installing tools to analyze binaries effectively. You’ll begin by learning about the IA32 and ELF32 as well as IA64 and ELF64 specifications. The book will then guide you in developing a methodology and exploring a variety of tools for Linux binary analysis. As you advance, you’ll learn how to analyze malicious 32-bit and 64-bit binaries and identify vulnerabilities. You’ll even examine obfuscation and anti-analysis techniques, analyze polymorphed malicious binaries, and get a high-level overview of dynamic taint analysis and binary instrumentation concepts.
By the end of the book, you’ll have gained comprehensive insights into binary analysis concepts and have developed the foundational skills to confidently delve into the realm of binary analysis.
What you will learn
Traverse the IA32, IA64, and ELF specifications
Explore Linux tools to disassemble ELF binaries
Identify vulnerabilities in 32-bit and 64-bit binaries
Discover actionable solutions to overcome the limitations in analyzing ELF binaries
Interpret the output of Linux tools to identify security risks in binaries
Understand how dynamic taint analysis works
1 Setting Up the Lab
2 32-bit Assembly on Linux and the ELF Specification
3 64-bit Assembly on Linux and the ELF Specification
4 Creating a Binary Analysis Methodology
5 Linux Tools for Binary Analysis
6 Analyzing a Simple Bind Shell
7 Analyzing a Simple Reverse Shell
8 Identifying Vulnerabilities
9 Understanding Anti-Analysis Techniques
10 A Simple Reverse Shell With Polymorphism