Reversing C++ presented at Blackhat USA 2007

by Paul Vincent Sabanal,

Tags: Security Analysis Malware

Summary : As recent as a couple of years ago,
reverse engineers can get by with just knowledge of C and assembly to
reverse most applications. Now, due to the increasing use of C++ in
malware as well as most moderns applications being written in C++,
understanding the disassembly of C++ object oriented code is a must.
This talk will attempt to fill that gap by discussing methods of
manually identifying C++ concepts in the disassembly, how to automate
the analysis, and tools we developed to enhance the disassembly based on
the analysis done.