Continue to Site

Welcome to EDAboard.com

Welcome to our site! EDAboard.com is an international Electronics Discussion Forum focused on EDA software, circuits, schematics, books, theory, papers, asic, pld, 8051, DSP, Network, RF, Analog Design, PCB, Service Manuals... and a whole lot more! To participate you need to register. Registration is free. Click here to register now.

help: Reverse engineering a DLL file

Status
Not open for further replies.

junglejenny

Member level 4
Joined
Nov 25, 2001
Messages
72
Helped
1
Reputation
2
Reaction score
1
Trophy points
1,288
Activity points
572
reverse dll file ida pro

Hi,
I need help disassembling a dll file. The file is written in C and compiled using MS VC6. Any tips would be appreciated. Can anyone point me to a good disassembler.

JJ
 

eltonjohn

Advanced Member level 4
Joined
Feb 22, 2002
Messages
1,435
Helped
64
Reputation
126
Reaction score
28
Trophy points
1,328
Activity points
16,329
reverse engineering dll

HI junglejenny :
What you need is IDAPRO 4.3.. It was posted here not long ago! it is 30 megs .. But is the right tool . You will be able to see the exported routines and there is a graphic tool , a viewer that shows all the functions and their logical connections
 

headcrash

Newbie level 3
Joined
Jul 16, 2002
Messages
3
Helped
0
Reputation
0
Reaction score
0
Trophy points
1,281
Activity points
25
ida packed dll

Hi !

Try Soft-Ice for tracing & debuging... IDA doesn't always help to understand code ( for example packed executable etc ), but IDA is GREAT TOOL! Must have :)))

Good luck
 

Vicent Yang

Member level 5
Joined
Dec 31, 1999
Messages
88
Helped
0
Reputation
0
Reaction score
0
Trophy points
1,286
Location
Taiwan
Activity points
697
reverse engineer a dll file

Can you tell me the download site for a demo for Soft-ICE
 

HugoRatlos

Member level 2
Joined
Oct 15, 2001
Messages
50
Helped
5
Reputation
10
Reaction score
5
Trophy points
1,288
Location
good old europe
Activity points
322
reverse engineering dll files

Hello,

to reverse with IDA I use this wonderfull tool:

hxxp://polaris.kcmo.net/

It is really 'very big super' great!

Hugo
 

happy_99

Member level 2
Joined
Oct 10, 2003
Messages
45
Helped
0
Reputation
0
Reaction score
0
Trophy points
1,286
Activity points
320
compile asm file from ida

W32dasm is a nice tool !

happy_99
 

Vicent Yang

Member level 5
Joined
Dec 31, 1999
Messages
88
Helped
0
Reputation
0
Reaction score
0
Trophy points
1,286
Location
Taiwan
Activity points
697
reverse engineering a dll file

I have a problem with IDA PRO. After conversion the file from HEX to ASM. I try to compile it with MASM or TASM i receive a lot of error messages. I this there is a special complier for the ASM file we got from IDA PRo.
 

jhonny_yang

Full Member level 2
Joined
Mar 8, 2002
Messages
130
Helped
2
Reputation
4
Reaction score
1
Trophy points
1,298
Activity points
988
ida reverse engineering dll

W32dasm83 is a uncompeteable tool ! very great for windows tool but sometime you must donwload the unpacker
 

Vicent Yang

Member level 5
Joined
Dec 31, 1999
Messages
88
Helped
0
Reputation
0
Reaction score
0
Trophy points
1,286
Location
Taiwan
Activity points
697
ida pro dll compile

Why you need to download the unpacker. Can you explain.
 

meax98

Full Member level 3
Joined
Nov 25, 2001
Messages
180
Helped
2
Reputation
4
Reaction score
2
Trophy points
1,298
Activity points
1,787
reverse engineering soft ice

Because files are often packed and crypted, so to dissasemble them, you have to unpack / decrypt them first. Go to this links and look for unpackers / decrypters:

hxxp://protools.cjb.net
hxxp://www.programmerstools.org

regards

meax98
 

tom324

Full Member level 1
Joined
Jun 26, 2001
Messages
98
Helped
3
Reputation
6
Reaction score
3
Trophy points
1,288
Location
Croatia
Activity points
672
reverse engineering dll file

Vicent Yang said:
I have a problem with IDA PRO. After conversion the file from HEX to ASM. I try to compile it with MASM or TASM i receive a lot of error messages. I this there is a special complier for the ASM file we got from IDA PRo.

IDA Pro is NOT meant to produce asm file that can be later assembled. This approach is not recommended even by IDA authors. Check datarescue board for more details.

The real purpose of IDA is to understand the way something works.

Tom
 
Status
Not open for further replies.

Part and Inventory Search

Welcome to EDABoard.com

Sponsor

Top