Dynamic Information Resolver (DDR) – IDA Plugin 1.0 beta

Executive summary

Static reverse-engineering within IDA could be problematic. Certain ideals are calculated at operate time, that makes it challenging to understand just what a certain simple block does. If you make an effort to perform dynamic evaluation by debugging a bit of malware, the malware will most likely detect differently it and begin behaving. Today, Cisco Talos will be releasing the 1.0 beta version of Dynamic Data Resolver (DDR) — a plugin for IDA which makes reverse-engineering malware simpler. DDR is making use of instrumentation ways to resolve dynamic ideals at runtime from the sample. For the 1.0 release, a couple of has been fixed by us of bugs, ported it to the most recent IDA version, added several new features, and also a new installer script that resolves all dependencies.


%d bloggers like this: