Category Archives: Programming

Code viewer, forms & timers

Posted on October 20, 2011 by Daniel Pistelli

In this post I’ll present some new things in IDA 6.2. There’s a new control, the code viewer, some additions to forms and the introduction of timers to discuss. All these new features have been exposed to the SDK, so … Continue reading

Posted in IDA Pro, Programming | Leave a comment

When choosers invade forms

Posted on February 18, 2011 by Daniel Pistelli

With the upcoming IDA 6.1 it will be possible to create forms which host chooser controls. This feature will be available in the Qt and text version (not so in the VCL one).

Posted in IDA Pro, Programming | 2 Comments

IDA & Qt: Under the hood

Posted on January 4, 2011 by Daniel Pistelli

Generally speaking most plugins for IDA can be written by using only the provided SDK. The API environment provided by IDA is vast and gives the plugin writer the capability to display graphical elements such as colored text views, graphs, … Continue reading

Posted in IDA Pro, Programming | Tagged | 4 Comments

Calculating API hashes with IDA Pro

Posted on October 9, 2010 by Elias Bachaalany

Many times when debugging malware you discover that the malware does not import any function, replaces API names by hashes and tries to resolve the addresses by looking up which API name has the desired hash! In this blog post … Continue reading

Posted in IDA Pro, Programming | 11 Comments

Book Review: The Art of Assembly Language, 2nd Edition

Posted on April 28, 2010 by Elias Bachaalany

Have you ever tried to teach x86 assembly language programming to someone coming from high level language programming background and discovered that it was hard? Before being able to write a simple “Hello World” program one needs to know a … Continue reading

Posted in Programming | 7 Comments

Casts are bad

Posted on July 29, 2009 by Ilfak Guilfanov

Halvar and Dennis Elser recently blogged about a serious vulnerability in the ATL libraries. A few days ago, Microsoft released an emergency “out-of-band” patch. Yes, the bug was that nasty, and since it is in a library, many MS Windows … Continue reading

Posted in Programming, Security | 5 Comments

Never say never

Posted on September 12, 2007 by Ilfak Guilfanov

I never thought that I’d be directly hit by an IE bug. However, it happened today. This page: http://www.hex-rays.com/compare.shtml does not render correctly in IE7. I tried everything, got rid of all validator complaints, rearranged the code, played with the … Continue reading

Posted in Programming | 8 Comments

Finally, good STL replacement?

Posted on May 19, 2007 by Ilfak Guilfanov

A quite interesting document for everyone who programs in C++: http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2007/n2271.html I’m even tempted to switch to it when/if it becomes available.

Posted in Programming | 2 Comments

Double renaming

Posted on January 30, 2007 by Ilfak Guilfanov

Quite often I have to revise old code in IDA Pro. Given its age, it happens almost every time a new feature is added (two exceptions: the bTree and the virtual memory manager are basically the same as about 17 … Continue reading

Posted in Programming | 7 Comments

Confusing instruction

Posted on September 18, 2006 by Ilfak Guilfanov

A few days ago I was working on the x86 IDA module. The goal was to have it recognize jump tables for 64-bit processors. This is routine: we have to add new instruction idioms to the analysis engine from time … Continue reading

Posted in Programming | 7 Comments