NSA’s Reverse Engineering Tool Released

By

The National Security Agency (NSA) has published the complete source code on GitHub.

The National Security Agency (NSA) has released the source code of its software reverse engineering tool, GHIDRA, on GitHub.

GHIDRA is NSA’s classified, Java-based reverse engineering framework, which the agency uses to disassemble binaries of software to understand its functionality. It’s a critical tool to reverse engineer malicious software such as malware. GHIDRA also features a GUI and can run on Linux, macOS, and Windows.

“With this release, developers will be able to collaborate by creating patches, and extending the tool to fit their cybersecurity needs,” said the blog post.

According to NSA, the source code repository includes instructions to build on all supported platforms. GHIDRA source code includes a suite of software analysis tools. Some of its core capabilities include disassembly, assembly, decompilation, graphing, and scripting. It supports a wide variety of processor instruction sets and executable formats and can be run in both user-interactive and automated modes.

Security analysts can use the source code to develop their own GHIDRA plug-in components and/or scripts using the exposed APIs.

The source code is available for download at ghidra-sre.org along with the 9.0.2 patch.

04/08/2019

Related content

  • Lead Image © Igor Kovalchuk, 123RF.com
    Analysis tour with Binary Ninja
    Binary analysis is an advanced technique used to work through cyberattacks and malware infestations and is also known as reverse engineering. We show you how to statically analyze binary programs with Binary Ninja, an interactive binary analysis platform.
    more »
  • Ongoing Cyberattack Prompts New CISA Guidance for Communications Infrastructure
    more »
  • Tech News
    In the news: Open Source AGPL Added as License Option for Elasticsearch; Sovereign Tech Fund Invests in FreeBSD Development; Red Hat's OpenStack Services on OpenShift Now Generally Available; Juniper Networks Offers New AI-Native Courses and Services; Delphix Report Cites Growing Concerns Over Data Protection; Endor Labs Launches Magic Patches and Upgrade Analysis Tool; Rackspace to Offer TuxCare's Extended Linux System Support; Announcing eLxr: Enterprise-Grade Linux for Edge-to-Cloud Deployments; NSA Issues Zero Trust Guidance on Automation and Orchestration; and IT Pros Report Lack of Familiarity with Secure Software Development.
    more »
  • Lead Image © Tom Baker, 123RF.com
    The Cuckoo sandboxing malware analysis tool
    The open source Cuckoo Sandbox malware analysis system investigates malicious software.
    more »
  • XP Apocalypse
    more »
comments powered by Disqus
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs

Most Popular

Support Our Work

ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.

Learn More”> </a> <hr> </div> </div> <div class=