📚 OpenRCE is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.





About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New


Customize Theme

Flag: Tornado! Hurricane!

 Forums >>  IDA Pro  >>  How is IDA better than other Dissassemblers?

Topic created on: November 5, 2011 23:18 CDT by Swoorup .

I am new to IDA. But I have used other Dissamblers. How do I get started?

  sikke   November 9, 2011 09:06.29 CST
Try to read the IDA book by Chris Eagle (the second edition is out). It's an excellent resource.

Some things it does better, IMHO: automatic recognition of library functions, options to comment on code, graphical views, the way it tracks arguments and argument types between functions, so that it automatically recognizes variables in other functions once you name and type them in one, the option to define and import new types (like enums, and standard enums from Windows etc., and structs/struct offsets). Etcetc. It's also very customizable (shortcuts etc) , supports lots of processors (not just x86, amd64 and ARM...) etc.

  Swoorup     November 12, 2011 00:00.56 CST
oh thank you. I have assigned labels and names to my IDB file. But I cant patch the program with jmp short LABELNAME. Whats wrong?

I was able to view patch option by changing a flag value in the configuration file!

EDIT: It always produces an error message saying: Cannot reach destination from the current location!

  ReverSin     November 28, 2011 08:30.27 CST
No PDFs ? Some of us are truely broke. :(

  Swoorup     November 30, 2011 01:11.22 CST
Hey spammer watch out.
Try Tiga's tutorials. Its better than reading a book :P

Note: Registration is required to post to the forums.

There are 31,328 total registered users.


Recently Created Topics
[help] Unpacking VMP...
Mar/12
Reverse Engineering ...
Jul/06
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Question about memor...
Dec/12


Recent Forum Posts
Finding the procedur...
rolEYder
Question about debbu...
rolEYder
Identify RVA data in...
sohlow
let 'IDAPython' impo...
sohlow
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n


Recent Blog Entries
halsten
Mar/14
Breaking IonCUBE VM
oleavr
Oct/24
Anatomy of a code tracer
hasherezade
Sep/24
IAT Patcher - new tool for ...
oleavr
Aug/27
CryptoShark: code tracer ba...
oleavr
Jun/25
Build a debugger in 5 minutes
More ...


Recent Blog Comments
nieo on:
Mar/22
IAT Patcher - new tool for ...
djnemo on:
Nov/17
Kernel debugger vs user mod...
acel on:
Nov/14
Kernel debugger vs user mod...
pedram on:
Dec/21
frida.github.io: scriptable...
capadleman on:
Jun/19
Using NtCreateThreadEx for ...
More ...


Imagery
SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit