Reversing C++ presented at BlackHatDC 2007

by Paul Vincent Sabanal,

URL : https://www.blackhat.com/presentations/bh-usa-07/Sabanal/Presentation/bh-usa-07-sabanal.pdf

Summary : As recent as a couple of years ago, reverse engineers can get by with just knowledge of C and assembly to reverse most applications. Now, due to the increasing use of C++ in malware as well as most moderns applications being written in C++, understanding the disassembly of C++ object oriented code is a must. This talk will attempt to fill that gap by discussing methods of manually identifying C++ concepts in the disassembly, how to automate the analysis, and tools we developed to enhance the disassembly based on the analysis done.