Logo

Testlab

  • Static analysis
  • Disassemblers
  • Debuggers
  • Decompilers
  • Program editing tools
  • Analysis automation programming
  • Software forensic tools
  • Malware analysis tools

Cracking

  • Introduction
    • What?
    • Why?
    • How?
  • Assessment and static analysis
    • Origins
    • Existing information
    • Viewing the file and extracting its text strings
    • File information
    • Static analysis
  • Executable file formats
    • ELF
    • PE
    • Root-me challenges
  • Reverse engineering in Linux
    • Compilation
    • Identification
    • objdump
    • ltrace
    • strace
    • gdb
    • radare2
    • Getting a password
      • Static
    • Dynamic
  • Reverse engineering in Windows
  • WebAssembly (WASM)
    • Resources

Malware analysis

  • Introduction
    • What?
    • Why?
    • How?
  • History of malware
  • Typical behaviours
  • Purpose of a malware attack
  • Malware signatures
  • Static and dynamic analysis
    • Static
    • Dynamic
    • Resources
  • Packers
    • Identifying packers

Useful snippets

  • Using Windows APIs
  • Code snippets for using WASM

TryHackMe rooms

  • Introduction
    • What?
    • Why?
    • How?
  • Analysing malicious pdfs
    • Questions
  • Analysing malicious Microsoft Office macros
    • Questions
  • I hope you packed your bags
    • Packing/unpacking
    • Identifying packers
    • Questions
  • THM Dunkle Materie
    • Questions

Root-me cracking challenges

  • Introduction
    • What?
    • Why?
    • How?
  • ELF x86 0 protection
    • Resources
  • ELF x86 basic
    • Resources
  • PE x86 0 protection
    • Resources
  • ELF C++ 0 protection
    • Resources
  • Godot 0 protection
    • Resources
  • PE x86 0 protection
    • Resources
  • ELF MIPS basic crackme
    • Resources
  • ELF x64 golang basic
    • Resources
  • ELF x86 fake instructions
    • Resources
  • ELF x86 ptrace
    • Resources
  • Godot bytecode
    • Resources
  • WASM introduction
    • Resources
  • ELF ARM basic crackme
    • Resources
  • Godot mono
    • Resources
  • PYC bytecode
    • Resources
  • ELF x86 no software breakpoints
  • ELF ARM crackme 1337
    • Resources
  • ELF x86 crackpass
  • ELF x86 exploitme
  • ELF x86 random crackme
  • GB basic Game Boy crackme
    • Resources
  • APK anti-debug

More practice

  • Malware traffic analysis exercises
  • theZoo - A Live Malware Repository
  • crackmes.one
Cracking nuts & malware analysis
  • Cracking & Malware analysis
  • Red Team
  • Blue Team
  • Improbability Blog
  • About
  • Register

Introduction

What?

Executable file format root-me challenges.

Why?

Dive into real binary formats.

How?

  • ELF x86 0 protection

  • ELF x86 basic

  • PE x86 0 protection

  • ELF C++ 0 protection

  • Godot 0 protection

  • PE DotNet 0 protection

  • ELF MIPS basic crackme

  • ELF x64 golang basic

  • ELF x86 fake instructions

  • ELF x86 ptrace

  • Godot bytecode

  • WASM introduction

  • ELF ARM basic crackme

  • Godot mono

  • PYC bytecode

  • ELF x86 no software breakpoints

  • ELF ARM crackme 1337

  • ELF x86 crackpass

  • ELF x86 exploitme

  • ELF x86 random crackme

  • GB basic Game Boy crackme

  • APK anti-debug

Previous Next

Unseen University, 2023, with a forest garden fostered by /ut7.