4.64 out of 5

89 reviews on Udemy

Reverse Engineering 2: Windows GUI Programs

Reverse engineer Windows Graphical User Interface programs with xdbg

Instructor:

Paul Chin

15,224 students enrolled

English [Auto]

Disassemble windows programs

Reversing jumps

Patching

Debugging windows programs

Solving crackme's

NOP instructions

Modifying EAX register values

Setting Hardware Breakpoints

Memory Patching

Intermodular Call Method

Call Stack Method

Understand how Trial Period works

Understand how Software Registration process works

Remove Nag Screens

In the first course in this series entitled Reverse Engineering 1: x64dbg Debugger for Beginners, you learnt how to reverse engineer a command line program and learnt how to debug and step over and patch and much more. Now, in this 2nd course, you will continue learning. This time we will be learning how to reverse engineer graphical user interface programs. As usual, we will work with crackme’s that I have written for you to practice reversing.

What you will learn:

How to disassemble programs into assembly code
Dynamic Analysis
Setting breakpoints and stepping through code
Modify program behaviour
Patching programs
Intermodular Call Method
Call Stack Method
Hardware Breakpoints
Memory Patching
Patching EAX register values
Understanding Trial Period software
Understanding Software Registration process

Thank you and see you inside.

Introduction

Introduction to windows gui programs

Analyzing PE files

Setting up x64dbg

Setting breakpoints on strings

Windows API functions

Pushing parameters to the stack

Bypassing messages

Bypassing using xor assembly

Breakpoints on Intermodular Calls

Breakpoints from Call Stack

Registration file checks

Analyzing crackme 2

Registration checks

Software registration

Removing Nag screens

Analyzing crackme 3

Removing Nag screen 1

Removing Nag screen 2

Setting Registration Status

Trial Periods

Analyzing Trial Periods

Extending Trial Periods

Autogenerated serial keys

Autogenerated serial keys 2

Practical Exercise - TDC

Practical Exercise - TDC - part 2

Practical Exercise - TDC - part 3

Patching EAX register values

Patching EAX register values - part 2

Hardware Breakpoints

Hardware Breakpoints - part 2

Memory Patching

Memory Patching - part 2

xAnalyzer

Configuring xAnalyzer

Serial Phishing

Intro to Serial Phishing

Analyzing the CreateFile API function

Serial Phising

Resources for Further Study

Bonus Lecture

How long do I have access to the course materials?

You can view and review the lecture materials indefinitely, like an on-demand channel.

Can I take my courses with me wherever I go?

Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don't have an internet connection, some instructors also let their students download course lectures. That's up to the instructor though, so make sure you get on their good side!

4.6

4.6 out of 5

89 Ratings

Detailed Rating

Stars 5		50
Stars 4		24
Stars 3		6
Stars 2		1
Stars 1		1

Login/Sign Up

Search

Menu

Reverse Engineering 2: Windows GUI Programs

Introduction

Introduction to windows gui programs

Analyzing PE files

Setting up x64dbg

Setting breakpoints on strings

Windows API functions

Pushing parameters to the stack

Bypassing messages

Bypassing using xor assembly

Breakpoints on Intermodular Calls

Breakpoints from Call Stack

Registration file checks

Analyzing crackme 2

Registration checks

Software registration

Removing Nag screens

Analyzing crackme 3

Removing Nag screen 1

Removing Nag screen 2

Setting Registration Status

Trial Periods

Analyzing Trial Periods

Extending Trial Periods

Autogenerated serial keys

Autogenerated serial keys 2

Practical Exercise - TDC

Patching EAX register values

Hardware Breakpoints

Memory Patching

xAnalyzer

Serial Phishing

Resources for Further Study

How long do I have access to the course materials?

Can I take my courses with me wherever I go?

Detailed Rating

Includes