GHIDRA - trust chec...
 
Notifications
Clear all

GHIDRA - trust check

3 Posts
2 Users
0 Likes
420 Views
(@tinybrain)
Posts: 354
Reputable Member
Topic starter
 

Did somebody already deeply analyze the sourceode of the NSA tool GHIDRA?

 
Posted : 06/03/2019 9:35 pm
harrisonamj
(@harrisonamj)
Posts: 3
New Member
 

No doubt many are in the process of doing as such but the reality is the NSA would be extremely unlikely (and indeed foolish) to knowingly do anything malicious such as backdooring the software.

There has been some pretty sensationalist and poorly informed commentary stemming from an early observation made by @hackergantastic, but generally I would expect RE work to be performed in an isolated VM/environment anyway given the nature of what is being handled.

 
Posted : 06/03/2019 10:54 pm
(@tinybrain)
Posts: 354
Reputable Member
Topic starter
 

Fully agree on your view. But keep in mind that an agency like NSA always is testing new obfuscation and deception patterns. They are best in class in hiding their real intention. Its related to resources an open question if you should study a friendly offer of your enemy which you never will trust.

To having the courage to throw away a very useful tool for the price of security and completely avoiding is a temptation you may should train to withstand.

Hard fact security view looks like this

#1 throw away GHIDRA your security level remains the same, but you lose a FREE tool
#2 adapt the GHIDRA may reduces your security

Conclusion As security always is weaker than you wish it should be - I go for #2 because of security is prio1 in our agency.

 
Posted : 06/03/2019 11:51 pm
Share: