Highest Voted Questions - Reverse Engineering Stack Exchange

4

votes

0 answers

Finding older IDA files

I am following the Begin RE tutorial here but I am stuck towards the end, where I load a file into IDA. I am using IDA Free 8.2 on Windows 11 x64. On the graph view it is only showing the main function, which is different to the screenshot in the…

asked Mar 31 '23 at 15:42

securityauditor

195
6

4

votes

0 answers

Decoding the Apple vendor tag in the 802.11 beacon

Background Looking to answer Is there a way to detect if you're connected via a shared WiFi Hotspot? on apple.stackexchange.com lead me to How does iOS and OS X detect when a Wi-Fi network is a personal hotspot?. I did some research into both…

asked Mar 25 '23 at 17:18

thewade

41
2

4

votes

1 answer

How to add STL to Local Types in Ida Pro?

How to add STL to Local Types in Ida Pro? I can import debug information from a pdb file along with STL types, but I can't manually add STL types to Local Types. Also I can't import STL when I click "Parse C header file" it's all the fault of the…

asked Mar 25 '23 at 09:47

user42316

4

votes

1 answer

Reverse engineering a flutter built apk

I was trying to reverse engineer an apk built with flutter. I actually feel like reversing flutter built apps did not get much reverse writeups on the community. one of the tools for the task reflutter which I used in this case failed because the…

asked Mar 20 '23 at 17:53

hanan

309
3
13

4

votes

0 answers

Decyphering 8kbps audio file format used in Solar Chanting Lotus

I'm trying to reverse engineer a solar powered chanting lotus flower so that I might replace the built in audio with something more interesting. The main chip (JL16B-083A - haven't been able to find any info on it) draws data from a 16MB flash that…

asked Mar 17 '23 at 04:37

Captain Lavender

41
1

4

votes

1 answer

This code does not crash on ARM (qemu). Why?

I found a couple of interesting integer underflows leading to memcpy() wild copies in a TLV parser process of some random IoT firmware. It is 32-bit ARMv7. I'm able to emulate the userspace process using qemu and debug it, I can confirm the wild…

asked Mar 14 '23 at 12:37

Attila Szász

61
5

4

votes

2 answers

Decrypt PPPoE password of Huawei ONT HG8145V5

I am trying to get the PPPoE password of my Huawei ONT, model HG8145V5. When I access the ONT user interface and go to WAN settings, I can clearly see the PPPoE username. However, the password is behind asterisks. I tried changing the password field…

decryption

asked Mar 13 '23 at 07:09

Brandon

41
1
2

4

votes

1 answer

Mickey Mouse toy bin file analysis

I am trying to reverse engineer a Mickey Mouse toy just for fun but I am stuck. The toy has several buttons that play various phrases and songs. My aim was to see if I can read those songs from the eeprom as the other chip is encased in resin. I was…

asked Mar 12 '23 at 17:07

George Farcas

43
4

4

votes

0 answers

How to assemble back a disassembled Linux kernel?

I have a Linux kernel file and I need to tweak the contents of its corresponding initramfs. I did it in the past for standard distros where kernel and initramfs were separate. However, this specific kernel comes with an embedded initramfs which…

asked Mar 07 '23 at 23:30

Peter

141
1

4

votes

1 answer

Trying to use Cycript to access element in the current windpws

I am using cycript,but I have tried some of these commands and not sure where I went wrong. cy# UIApp.windows[0] #"; layer =

ios

asked Mar 05 '23 at 16:26

A O

161
3

4

votes

0 answers

Comparison of Windows Debuggers

I have some experience reverse engineering ELF files using tools like GDB, radare2, and Ghidra, but I am new to Windows debugging. There are quite a few different debuggers out there for Windows and family, and I was hoping that someone could give…

asked Mar 04 '23 at 22:00

jinscoe123

151
1

4

votes

1 answer

Reverse engineer DPC Latency Checker tool to fix high Windows kernel timer latency

I need help with something very Windows/kernel-specific. I'm working on a fix for the high Kernel Timer Latency in Windows 10 2004 and higher. This problem was introduced between Insider Build 18950 and 18970.1001. You can test this with a software…

asked Mar 03 '23 at 21:14

SilverLPs

41
1

4

votes

0 answers

JTAG Version 2.0 or 2.1

I need to identify which device has JTAG Version 2.1 for TI TMS320DM8168CCYG4 (Digital Media Processor). What socket is recommended?

jtag

asked Mar 02 '23 at 13:24

Charlie Polidoro

41
1

4

votes

2 answers

IDAPython set name of function using string passed to debug logging subfunction

IDA Pro 7.6 Static disassembly of ARM executable. This binary has 40K functions or so, and no symbols. So all the functions are sub_49FFA etc. However, 90% of these functions have a call to a debug logging function, which says what the function…

asked Feb 12 '23 at 18:09

Tis Me

83
6

4

votes

1 answer

Windows 11: Interact with IDA pro when running in session 0

I am trying to debug a windows service, so I set IDA as the debugger of that service. But since services are running in session 0, I can't interact with IDA. Also in the latest windows version (e.g. 22h2), it looks like they removed tools that make…

asked Feb 07 '23 at 16:35

tturbox

53
3

Prev 1 2 3

…

99

100

Most Popular