82 reviews

Reverse Engineering 2: Windows GUI Programs

Reverse engineer Windows Graphical User Interface programs with xdbg

Instructor

Paul Chin

Category

IT & Software

Network & Security

15,224 Students enrolled

Description
Curriculum
FAQ
Reviews

In the first course in this series entitled Reverse Engineering 1: x64dbg Debugger for Beginners, you learnt how to reverse engineer a command line program and learnt how to debug and step over and patch and much more. Now, in this 2nd course, you will continue learning. This time we will be learning how to reverse engineer graphical user interface programs. As usual, we will work with crackme’s that I have written for you to practice reversing.

What you will learn:

How to disassemble programs into assembly code
Dynamic Analysis
Setting breakpoints and stepping through code
Modify program behaviour
Patching programs
Intermodular Call Method
Call Stack Method
Hardware Breakpoints
Memory Patching
Patching EAX register values
Understanding Trial Period software
Understanding Software Registration process

Thank you and see you inside.

Introduction to windows gui programs

1

Introduction

Video lesson

Introduction

Analyzing PE files

2

Introduction to windows gui programs

Video lesson

Introduction to windows gui programs

Setting up x64dbg

3

Analyzing PE files

Video lesson

Setting breakpoints on strings

4

Setting up x64dbg

Video lesson

Setting up x64dbg

Windows API functions

5

Setting breakpoints on strings

Video lesson

Setting breakpoints on strings

Pushing parameters to the stack

6

Windows API functions

Video lesson

Windows API functions

Bypassing messages

7

Pushing parameters to the stack

Video lesson

Pushing parameters to the stack

Bypassing using xor assembly

8

Bypassing messages

Video lesson

Bypassing messages

Breakpoints on Intermodular Calls

9

Bypassing using xor assembly

Video lesson

Bypassing using xor assembly

Breakpoints from Call Stack

10

Breakpoints on Intermodular Calls

Video lesson

Breakpoints on Intermodular Calls

Registration file checks

11

Breakpoints from Call Stack

Video lesson

Breakpoints from Call Stack

Analyzing crackme 2

12

Registration file checks

Video lesson

Registration file checks

Registration checks

13

Analyzing crackme 2

Video lesson

Analyzing crackme 2

Software registration

14

Registration checks

Video lesson

Registration checks

Removing Nag screens

15

Software registration

Video lesson

Software registration

Analyzing crackme 3

16

Removing Nag screens

Video lesson

Removing Nag screens

Removing Nag screen 1

17

Analyzing crackme 3

Video lesson

Analyzing crackme 3

Removing Nag screen 2

18

Removing Nag screen 1

Video lesson

Removing Nag screen 1

Setting Registration Status

19

Removing Nag screen 2

Video lesson

Removing Nag screen 2

Trial Periods

20

Setting Registration Status

Video lesson

Setting Registration Status

Analyzing Trial Periods

21

Trial Periods

Video lesson

Trial Periods

Extending Trial Periods

22

Analyzing Trial Periods

Video lesson

Analyzing Trial Periods

Autogenerated serial keys

23

Extending Trial Periods

Video lesson

Autogenerated serial keys 2

24

Autogenerated serial keys

Video lesson

Autogenerated serial keys

Practical Exercise - TDC

25

Autogenerated serial keys 2

Video lesson

Autogenerated serial keys 2

Patching EAX register values

Hardware Breakpoints

Memory Patching

xAnalyzer

Serial Phishing

Resources for Further Study

How long do I have access to the course materials?

You can view and review the lecture materials indefinitely, like an on-demand channel.

Can I take my courses with me wherever I go?

Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don't have an internet connection, some instructors also let their students download course lectures. That's up to the instructor though, so make sure you get on their good side!

4.64

82 reviews

Please, login to leave a review

Stars 5

Stars 4

Stars 3

Stars 2

Stars 1