filmov
tv
#HITB2021SIN D1T2 Taking Ghidra To The Next Level - Zhanzhao Ding
Показать описание
Ghidra is NSA opensouced in 2019. As the only one in the open source community that has the potential of being the replacement of IDA, it draws a lot of attention.
However, due to the history of its development, the code has been historical. And the official seems to be moving slow on improving some of the user experience problems. One possible reason of this situation is that, the Ghidra community can be limited by historical issues. BinCraft, is dedicated to becoming a more modern version of ghidra release by fixing its historical issues, bugs, providing features that might profit the users much more and integrate modern techniques like GraalVM.
In this presentation, we will take a look at the work we’ve done on Ghidra to take it to the next level and key things we learnt along the way.
===
Ding Zhanzhao, nickname anciety, StarCross Portal Lab researcher, the leader of the CTF team r3kapig, Peking University overgraduate. StarCross technology Portal Lab focuses on container security, incident response, reverse engineering and binary analysis. Members have published several research topics in BlackHat, BlueHat, OWASP, XCON and PHDays. As the leader of the PortalLab, Anciety has been qualified in participating DEFCON CTF final 4 times (26-29) and has achieved many world-top-level CTF awards, such as TCTF/0CTF 1st place, WCTF 3rd place. Also, anciety has been one of the organizers for several world-level CTFs such as XCTF and BCTF, the latter is one of the DEFCON wild card CTFs.
However, due to the history of its development, the code has been historical. And the official seems to be moving slow on improving some of the user experience problems. One possible reason of this situation is that, the Ghidra community can be limited by historical issues. BinCraft, is dedicated to becoming a more modern version of ghidra release by fixing its historical issues, bugs, providing features that might profit the users much more and integrate modern techniques like GraalVM.
In this presentation, we will take a look at the work we’ve done on Ghidra to take it to the next level and key things we learnt along the way.
===
Ding Zhanzhao, nickname anciety, StarCross Portal Lab researcher, the leader of the CTF team r3kapig, Peking University overgraduate. StarCross technology Portal Lab focuses on container security, incident response, reverse engineering and binary analysis. Members have published several research topics in BlackHat, BlueHat, OWASP, XCON and PHDays. As the leader of the PortalLab, Anciety has been qualified in participating DEFCON CTF final 4 times (26-29) and has achieved many world-top-level CTF awards, such as TCTF/0CTF 1st place, WCTF 3rd place. Also, anciety has been one of the organizers for several world-level CTFs such as XCTF and BCTF, the latter is one of the DEFCON wild card CTFs.
0:46:24
1:00:07
0:44:05
0:07:56
0:47:12
0:37:37
![[WCTF 2019] I](https://i.ytimg.com/vi/KB0KCjnXCy8/hqdefault.jpg)
0:00:25
0:27:45
0:01:28
0:16:52
0:14:16
0:13:29
0:10:25
0:17:59
0:55:39
0:27:33
0:48:45
0:26:39
0:47:01