Stories
Slash Boxes
Comments

SoylentNews is people

US NSA Announces Open Source Availability of GHIDRA Software Reverse Engineering Framework

posted by Fnord666 on Wednesday March 06 2019, @08:12AM   Printer-friendly
from the I'm-not-gonna-try-it...YOU-try-it! dept.

martyb writes:

The US National Security Agency (NSA) announces it has made its GHIDRA Software Reverse Engineering (SRE) framework available as open source. Key features of Ghidra are:

  • includes a suite of software analysis tools for analyzing compiled code on a variety of platforms including Windows, Mac OS, and Linux
  • capabilities include disassembly, assembly, decompilation, graphing and scripting, and hundreds of other features
  • supports a wide variety of processor instruction sets and executable formats and can be run in both user-interactive and automated modes
  • users may develop their own Ghidra plug-in components and/or scripts using the exposed API

The framework can be downloaded from https://ghidra-sre.org/. The page has a button labeled "SHA-256" but it seems to require Javascript for it to be displayed. A simple "view source" (you don't think I'm gonna let the NSA have execution permission on my computer!) of the page revealed:

3b65d29024b9decdbb1148b12fe87bcb7f3a6a56ff38475f5dc9dd1cfc7fd6b2 ghidra_9.0_PUBLIC_20190228.zip

Alternatively, it also seems to be available on GitHub.

What I really want to know is how are you supposed to pronounce its name?

Original Submission

 
This discussion has been archived. No new comments can be posted.
US NSA Announces Open Source Availability of GHIDRA Software Reverse Engineering Framework | Log In/Create an Account | Top | 21 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 5, Informative) by Anonymous Coward on Wednesday March 06 2019, @08:53AM (3 children)

    by Anonymous Coward on Wednesday March 06 2019, @08:53AM (#810638)

    Comparing the current equivalents that are not junk:

    Ghidra (pronounced with a hard G, an evil-sounding breathy H, and an I drawn out like EEEE) is free, including the decompilers. It is sadly written in Java. It supports undo/redo and collaboration. There is a built-in assembler for modifying binaries. This is from the NSA. Many CPUs are supported; it looks like a couple dozen. This is the only Open Source interactive disassembler that isn't junk.

    IDA Pro is about $1800 plain, or $15000 with all 5 decompilers. It's about half that if you skip 64-bit architectures. There is NO undo/redo and NO collaboration, but you can hack around it with manual snapshots and import/export. This is from a Belgian company run by a Russian. Numerous CPUs are supported; it looks like more than 50.

    IDA freeware is free. It only does x86 and ARM, only does PE and ELF, and doesn't have decompilers. As above: There is NO undo/redo and NO collaboration, but you can hack around it with manual snapshots and import/export. This is from a Belgian company run by a Russian.

    Binary Ninja is $149. It has most of a decompiler. You don't get compilable C source code; instead you get a sort of pseudocode that is helpful for understanding things. (full decompiler to C is coming soon) This is from a US company. You get undo/redo. You can get collaboration if you pay extra for the enterprise version. There is a built-in C compiler that can produce code that meets various strange constraints, including obfuscation. The UI is eye-pleasing. Roughly a half dozen CPUs are supported, and another half dozen are available as community contributions.

    Hopper Disassembler is $99. You get undo/redo. The UI is somewhat eye-pleasing. I think it supports ARM, x86, and PowerPC.

    BTW, I'm serious about that pronunciation. I met the project manager in a location that shall not be disclosed. Do it right: hard G, evil breathy H, drawn-out I sounding like EEE

    Starting Score:    0  points
    Moderation   +5  
       Interesting=1, Informative=3, Funny=1, Total=5
    Extra 'Informative' Modifier   0  
    Total Score:   5  

  • (Score: 2) by pkrasimirov on Wednesday March 06 2019, @10:08AM (1 child)

    by pkrasimirov (3358) Subscriber Badge on Wednesday March 06 2019, @10:08AM (#810650)

    The project manager does not necessarily decide how it is pronounced. Example: gif.

    • (Score: 0) by Anonymous Coward on Wednesday March 06 2019, @10:43AM

      by Anonymous Coward on Wednesday March 06 2019, @10:43AM (#810654)

      I am only going to pronounce it as an Italian would do and.... oh it's exactly the same.

  • (Score: 0) by Anonymous Coward on Thursday March 07 2019, @01:18AM

    by Anonymous Coward on Thursday March 07 2019, @01:18AM (#810959)

    All of them have various levels of goodness about them. For the 'old' platforms most of them fail at it fairly hard. I am hoping this one has some win3.x and 95 vxd love. There are a few bits and bobs that I would love to port to something modern. Finding a de-compiler for the NE format is fairly miss and not hit...