← Back to the catalog CTF Reverse Engineering techniques for analyzing unknown binaries, cracking game client verifications, de-obfuscating code, and interpreting custom VMs. It covers static/dynamic analysis, anti-debugging bypass, and multi-platform reverse engineering for WASM, .NET, APK, Python bytecode, Go, and Rust.
View on GitHub ↗ Copy repo URL Copy SKILL.md link /plugin marketplace add wgpsec/AboutSecurity The exact command may vary by repository. Check the README on GitHub.
For the skill author
Shows your skill is listed on Skillteca, generates a backlink and trackable traffic.
Markdown HTML
[](https://www.skillteca.com.br/skills/ctf-reverse?utm_source=badge&utm_medium=readme&utm_campaign=badge) Copy snippet Team Mode security research skill orchestrates 3 vulnerability hunters and 2 PoC engineers to audit a codebase in parallel, prove exploitability, classify root causes, and calibrate severity. It is used for security review, vulnerability research, exploitability audit, and threat model validation.
Segurança by code-yeongyu
Comprehensive security auditing workflow covering web application testing, API security, penetration testing, vulnerability scanning, and security hardening.
Segurança #github #git by sickn33
security-compliance-compliance-check You are a compliance expert specializing in regulatory requirements for software systems including GDPR, HIPAA, SOC2, PCI-DSS, and other industry standards. Perform comprehensive compliance audits and provide implementation guidance for achieving and maintaining compliance.
Segurança #github #git by sickn33
Expert security auditor specializing in DevSecOps, comprehensive cybersecurity, and compliance frameworks.
Segurança #github #git by sickn33
Category alert
One short email with only the new Segurança skills. 4 minutes of reading, no spam, unsubscribe with one click.
You confirm your email on the first send. No spam. Unsubscribe with one click.
CTF 逆向工程
深入参考
以下参考资料按需加载 ,根据识别出的具体方向选择对应文件:
分类决策树
拿到逆向题?
├─ 识别文件类型: file binary
│ ├─ ELF → GDB + Ghidra
│ ├─ PE/DLL → x64dbg + IDA
│ ├─ Mach-O → lldb + Hopper
│ ├─ APK → apktool + jadx (Flutter → Blutter)
│ ├─ .NET → dnSpy / ILSpy
│ ├─ Python .pyc → uncompyle6 / decompyle3
│ ├─ WASM → wasm-decompile / wasm2wat
│ └─ 未知 → binwalk + strings + hexdump
├─ 分析策略
│ ├─ 静态优先 → Ghidra反编译 → 找 main/check 函数
│ ├─ 动态辅助 → GDB断点 / Frida hook
│ ├─ 符号执行 → angr(自动探路)
│ └─ 反混淆 → D-810 / GOOMBA / Miasm
├─ 有反调试? → [references/anti-analysis.md](references/anti-analysis.md)
│ ├─ ptrace → LD_PRELOAD hook
│ ├─ /proc/self/status → 修改返回值
│ └─ 时间检测 → 跳过或 patch
└─ 常见模式
├─ 逐字符校验 → 逐字节爆破/约束求解
├─ 矩阵变换 → numpy/Z3 逆运算
├─ 自定义VM → 提取opcode表 → 反汇编
└─ 迷宫 → BFS/DFS 自动求解
快速启动命令
# 基础分析
file binary && checksec binary
strings -n 6 binary | grep -iE "flag|pass|correct"
objdump -d binary | head -100
# GDB 调试
gdb -q binary -ex 'b main' -ex 'r'
# Ghidra 无头分析
analyzeHeadless /tmp/proj proj -import binary -postScript ExportDecompiled.java
# angr 符号执行
python3 -c "
import angr
p = angr.Project('./binary')
s = p.factory.entry_state()
sm = p.factory.simgr(s)
sm.explore(find=0x TARGET_ADDR)
print(sm.found[0].posix.dumps(0))
"
常见反调试绕过
技术 绕过方法 ptrace(PTRACE_TRACEME) LD_PRELOAD hook 返回0/proc/self/status 修改 TracerPid 时间检测 patch 掉 rdtsc/clock IsDebuggerPresent (Win) PEB.BeingDebugged = 0
工具速查
工具 用途 Ghidra 免费反编译器(支持多架构) GDB + pwndbg Linux 动态调试 Frida 运行时 hook(跨平台) angr 符号执行引擎 dogbolt.org 在线多反编译器对比
Read full description↓
Comments · No comments No comments yet. Be the first. 