The map of the program's code then be postprocessed for further investigations.
That's why advanced techniques have been implemented into IDA Pro to make that code more readable, in some cases, quite close to the original source code that produced the binary program. However, assembly language is hard to make sense of. If the friendly screen saver you have just installed is spying on your e-banking session or logging your e-mails, a disassembler can reveal it. The real interest of a disassembler is that it shows the instructions that are actually executed by the processor in a symbolic representation called assembly language. Yet, two of our technologies are truly unique, have never been implemented under any form in any real-life disassemblers and, more importantly, are incredible time savers.Īs a disassembler, IDA Pro explores binary programs, for which source code isn't always available, to create maps of their execution. Its multi-processor support is unmatched. Its interactivity allows you to improve disassemblies in real time. IDA Pro is a programmable, interactive, multi-processor disassembler combined with a local and remote debugger and augmented by a complete plugin programming environment. ARM: support another variation of GCC Thumb-2 switches.ARM: display the optional operand of the MRC/MCR instructions, as preferred by the ARM documentation.ARM: added a switch pattern that uses BX to jump to case labels.6812: support an alternative memory layout for paged segments which allows to use short offsets inside the segment.To conclude, IDA mostly concentrates on disassembling and debugging applications and its main purpose is to analyze and detect vulnerabilities, in order to help developers to repack the code into a much stronger, more secure program. You can always turn to the extensive help file if in need of advice. However, it may offer you several hints related to unsolved issues and suspicious lines, but it can only proceed if instructed properly. It hosts a few menus that occupy a small area, compared to the actual disassembly area, which takes almost all of the allocated space.Īs soon as you open a file (in EXE format), IDA starts the disassembly process almost right away and displays various characteristics of the source program, such as HEX view, Structures, Enums, Imports and Exports (with details about the memory address and associated libraries).īeing an interactive disassembler, the analysis and debugging process for the code is not done automatically. The interface is simple, yet organized and professional looking. What’s more, the installation process doesn’t take that long and the load time of the application is quite decent.
IDA is a complex application, but as far as requirements are concerned, the software is not that picky. Bent on analyzing hostile code and researching security vulnerabilities, IDA is often the first choice of antivirus companies and even military organizations.
IDA features support for more than fifty families of processors and can be run on various platforms, including Windows, Linux and MAC OS X. With possibilities to unpack and analyze applications that don’t have their source code attached, IDA remains one of the most reliable disassemblers on the market. IDA or the Interactive Disassembler, is a multi-processor debugger designed to disassemble binary programs in order to generate maps of execution.