this page is a work in progress

My reverse-engineering resources and thoughts.

I plant to describe various techniques and approaches to reverse-engineering I consider useful and important. I work almost exclusively with malware, so I’m used to highly adversariar scenarios (programs that try to make analysis as hard as possible) - which influences my choice of tools.

My primary disassembler is Ghidra, even though I have access to a commercial IDA Pro license.

• Ghidra - Resources about Ghidra.
• Reverse-engineering checklist - Reverse Engineering decision tree.
• Analysis techniques - A page documenting various approaches to Reverse Engineering.