Ethical Hacker – Tool of the Day – Binary Ninja / Reverse Engineer / Debugger

Listen to this Post

I was using good ole Oly Debug for reversing and I just found out about Binary Ninja, which has an excellent version for free. It’s worth checking out, even if you have never used a disassembler before.

Get it at:

https://binary.ninja/free/

You Should Know:

Binary Ninja is a powerful reverse engineering platform that allows you to analyze binary files, disassemble code, and debug applications. Below are some practical steps, commands, and codes to get started with Binary Ninja:

1. Installation on Linux:

  • Download the Binary Ninja free version from the official site.
  • Extract the package and run the following commands to install it:
    tar -xvzf binary-ninja-linux.tar.gz
    cd binary-ninja
    ./binaryninja
    

2. Basic Commands in Binary Ninja:

  • Open a binary file:
    binaryninja /path/to/your/binary
    
  • Use the `b` key to switch between different views like Graph, Linear, and Hex.
  • Press `x` to view cross-references to a function or data.

3. Disassembling mimikatz.exe:

  • Load the binary file in Binary Ninja.
  • Navigate to the `main` function to view the disassembled code.
  • Use the `;` key to add comments to the disassembled code for better understanding.

4. Debugging with Binary Ninja:

  • Attach Binary Ninja to a running process using the `Attach to Process` option.
  • Set breakpoints by clicking on the line number in the disassembly view.
  • Use the `F5` key to run the program until the next breakpoint.

5. Scripting with Binary Ninja API: