No announcement yet.

Binary Reversing of the time when IDA Pro's HexRay Decompiler did not exist

  • Filter
  • Time
  • Show
Clear All
new posts

  • Binary Reversing of the time when IDA Pro's HexRay Decompiler did not exist

    Binary Reverse Engineering of the time when IDA Pro's HexRay Decompiler did not exist in the world.

    The purpose of this video was to explain to students the decompilation know-how that I was using alone at the time.
    Within a few months, the
    IDA Pro's HexRay Decompiler was released.
    After this event I no longer need to use this decompilation method.
    IDA Pro's HexRay showed a very shocking decompilation capability.
    There was a strange rumor among hackers at that time.
    Rumor has it that IDA Pro isn't just building a disassembler.
    They were rumored to be using the intermediate language to implement the disassembler.
    Today it is very popular, but at that time an intermediate language(
    Like LLVM IR) was a strange concept.
    It was later discovered that the intermediate language was the technology that led to the creation of the HexRay decompiler.
    Recently, IDA Pro developers have decided to open their own
    IRs to customers since product version 7.1.
    I can't buy this tool because I'm poor.
    I'm using a leaked version.

    This video shows how to convert the "
    reversing500" binary of the "defcon15" hacking contest into C.
    It was a very long time ago. (
    This video was produced by AmesianX in 2007.)
    So it has no technical value.
    It's just a classic record of how I studied long ago.
    This video is written in Korean.
    In this video I was using a tool called
    REC(Reverse Engineering Compiler).

    I have been interested in IR since the Bitblaze project was introduced in South Korea.
    The reason why I have to be interested in
    IR is explained fully in the above article.
    I thought the
    Bitblaze project should use LLVM IR when it was introduced in South Korea.
    And my predictions are not wrong.
    Today, research on
    IR is becoming popular with LLVM IR.
    A long time ago, the reason I was so predictable is simple.
    If you use
    LLVM IR as an intermediate language, you can attach a wide variety of general purpose plug-ins.
    Bitblaze project was introduced to South Korea by famous hacker Beist at a security seminar in around 2010(?).
    After watching the seminar, I predicted.
    I expected the
    HexRay developers to convert their own IR into LLVM IR, but this has not happened yet.
    Are you interested in the HexRay Contest?
    IDA Pro has opened micro IR, so if you build an LLVM converter on this topic, you'll probably win.
    I haven't checked if it's possible to make a converter.
    If I am a HexRay contest judge I will give you "
    1st winner".)
    IR with each other will hinder the development of technology.
    There is a
    compatibility issue that can't be used for projects between each other.
    IR also needs a standard.
    I insisted on the community of hackers that the standard should be
    LLVM IR, and so predicted it around 2010.
    I already saw
    KLEE at that time.