What's a Ghidra, and why should you care?

Presented at Kernelcon 2019, April 6, 2019, 3:20 p.m. (20 minutes)

The NSA recently announced that they will be releasing one of their in-house reverse engineering tools, named GHIDRA, to the public on March 5th at RSA USA 2019 (https://bit.ly/2sO1GBt). GHIDRA is a disassembler with a feature set similar to that of IDA Pro. In this talk we will highlight GHIDRA's feature set, compare and contrast it with IDA Pro, point out some of its strengths and weaknesses, all in an attempt to help you decide whether GHIDRA or worth adopting for your reverse engineering needs.

Presenters:

• Chris Eagle
  Chris Eagle has been a computer engineer/scientist for over 30 years, his research interests include computer network operations, computer forensics and reverse/anti-reverse engineering. He was the chief architect of the competition infrastructure for DARPA's Cyber Grand Challenge. He has been a speaker at conferences such as Black Hat, Shmoocon, and Defcon and is the author of 'The IDA Pro Book'. In his spare time he is an inveterate CTF player and has twice won the prestigious capture the flag competition at Defcon.

Links:

• https://2019.kernelcon.org/agenda#ghidra

Similar Presentations:

• Kernelcon 2020 Virtual / How Ghidra changed my life
• SAINTCON 2019 / Reverse Engineering and Code Emulation with Ghidra
• Texas Cyber Summit 2019 / RE-1012 Ghidra for the begineer reverse enginering