ฝัง
- เผยแพร่เมื่อ 2 ต.ค. 2024
- In this OALABS Patreon tutorial we will learn how to use the Unicorn Emulator to assist with reverse engineering! This is the second part in a five-part tutorial series that can be found on our Patreon here...
www.patreon.co...
Lab Notes
gist.github.co...
-----
OALABS DISCORD
/ discord
OALABS PATREON
/ oalabs
Twitch
/ oalabslive
OALABS GITHUB
github.com/OALabs
UNPACME - AUTOMATED MALWARE UNPACKING
www.unpac.me/#/
-----
![Assembly Calling Conventions For Reverse Engineers [Patreon Unlocked]](http://i.ytimg.com/vi/9lzW0I9_cpY/mqdefault.jpg)
my experience with unicorn was good, just take a note you need to have aligned memory address with it. unicorn was forcing 4k alignment on map.
address & size parameters must be 4KB aligned with uc_mem_map
You get the pin : )
Like 255👍🏻
Thank you for sharing a very great video. I will always be with my lovely and wonderful friends. Good luck 🌹
Really sick content lately I absolutely love emulation stuff! Explained so well too
Thanks : ))
The goat 🐐
Hello 😘😘
My friends😄😄
Thank you so very much 🎁🎁🙆🙆
Like friends🙆🙆😍
Happy days ❤❤❤🎉🎉🎉🎉
May I ask if you have tried to compile unicorn from source? I tried to compile unicorn static libraries for arm64 architecture and failed.
i.imgur.com/IhWEb3a.png
@@OALABS wow,I didn't expect you to really answer my question. Thank you very much.
@@OALABS 🤣man,It turned out to be a picture
hahahah!! sry, yes I have compiled it, only pain awaits you...
bruh I gotta get me into this Patreon
TH-cam really wanted me to watch this video. This has been on the top of my recommended feed on the home page for 2 weeks until I finally gave in.
Seems like part of a larger tutorial series.
What kind of wizardry is this? The video has only been out for a day... TH-cam time machine!
Good Night 😍😘🎁🎁
Like friends🥰🥰🙆🙆
Video very good 🎉🎉🎉❤❤❤
👍
can you explain an example of malware that has a VM-based obfuscation and how to analysis it ?
Not in a TH-cam comment lol... I guess I could give you super unhelpful generic advice like locate the instruction handlers, identify their behaviour, create a lifter, lift and transform to something readable... or maybe if you just need a dirty trace hook all of the instruction handlers and print a trace... but I have a feeling you meant something more like plz generic unpack vmprotect in TH-cam comments... at some point a plan to do a series on this but not sure when...
@@OALABS Yes please I would love a deobfuscation videos
I wonder if it can emulate NXP MPC microcontroller / which based PowerPC architecture/ ?
Supported targets github.com/unicorn-engine/unicorn/tree/master/qemu/target
Huzzah!
Can you stop this strange sound at the beginning of the video because it causes disturbance when I put on headphones?
DO 👏 IT 👏 LIVE