Skip to main content
Reverse Engineering

Questions tagged [dynamic-analysis]

Ask Question

Analysis of a piece of code by letting it run (fully or step-by-step) on a real system or in a virtualized environment, as opposed to static analysis.

148 questions
Newest Active Bountied Unanswered
0 votes
0 answers
55 views

I'm currently analyzing a malware that mimics a legitimate social network application. The malware phishes users to log into their real accounts, and then it stores their real cookies somewhere. I'm ...
gergeerew's user avatar
  • 11
1 vote
1 answer
73 views

There are two or even more Android applications that somehow interact with each other: Application A invokes application B or sends request to it directly or via third application C. I don't have the ...
Max's user avatar
  • 113
2 votes
2 answers
142 views

I would like to alter the behavior of some executable (in my case, a videogame). One way of doing this is to hook function calls (e.g., a function like Player::ReceiveDamage) and adjust parameters/...
tcpie's user avatar
  • 125
1 vote
0 answers
84 views

I wrote this simple application in C++ to learn about reverse engineering: #include <iostream> #include <windows.h> void PrintMessage(const char *message) { std::cout << message ...
Unknown X's user avatar
  • 11
0 votes
1 answer
501 views

I want to learn how listen certain .so files. I mean what is the way to know which fuctions are called which body of code executed in shared library at Android? I just wanted mofify stock camera on my ...
Savox Saastuxl's user avatar
  • 1
1 vote
1 answer
247 views

I have the following problem on my agenda: There is an obfuscated .exe (this is a virus that I am investigating) in addition to having an MBA, etc. bullshit, he has Opaque predicates and dead code, I ...
Swoke's user avatar
  • 11
2 votes
1 answer
126 views

atm I'm using ida and x32dbg, when I find a function that interests me, I set a breakpoint on x32dbg, however, I'm not good enough at assembly to know everything from a function just from looking at ...
felipebubu's user avatar
  • 23
3 votes
1 answer
726 views

How to identify and define a struct in IDA pro Decompiling during reverse engineering? Please explain the easiest way to figure out the struct in IDA Pro decompilation! To make life easier are there ...
Jose I. Hughes's user avatar
  • 33
2 votes
1 answer
97 views

I want to trace the mutex variables in my rust program(e.g. which mutex called lock() and unlock() methods). And I think there're static methods.
roo jack's user avatar
  • 21
0 votes
0 answers
86 views

I am analyzing some malware on Windows 10. I installed FLARE VM, disabled tamper protection and disabled the virus scanner in the registry. However when I attempt to run a malware, Windows is still ...
Jason Crosby's user avatar
  • 131
2 votes
0 answers
53 views

I would like to perform dynamic analysis on some android apps to check if these apps sending metadata with media files or not. Ideas like the picture below: Step 1: I prepared an image with metadata (...
ThanhLam112358's user avatar
  • 121
3 votes
0 answers
91 views

I'm trying to get RAW data from a laser rangefinder device, but it has no PC connection ports. It has a small LCD screen onboard, where all data is displayed: distance, angle, battery level, etc. ...
artsin's user avatar
  • 131
5 votes
1 answer
690 views

I'm working on a disassembly of an old DOS game. (Real old: 16-bit, real mode.) The bulk of the game is in a large resource file of mixed binary and data; the executable basically just loads a chunk ...
Peter Malamud Smith's user avatar
  • 51
3 votes
0 answers
221 views

I'm attempting to analyze a binary from iOS 14.8 (searchpartyd). I'm using Frida to try to hook it like I normally would with other binaries. However, I'm getting an error message that I'm unable to ...
AGreen BHM's user avatar
  • 31
3 votes
0 answers
116 views

I've been looking for a capturebat alternative that will function on Windows 10 and 64 bit. I'm not interested in capturbat's network capabilities; rather, I'm interested in its capacity to capture ...
dakar111's user avatar
  • 31

15 30 50 per page
1
2 3 4 5
10