This course will focus on 64-bit Windows, but we will talk a little about 32-bit. Note: In this course x32 and x86 both refer to 32-bit.
You will need a 64-bit Windows OS. You can use a virtual machine (VM) if you want. It's typically best to use a VM for security reasons, but you don't need to worry about that until the malware chapter. If you plan on making reverse engineering part of your life then you will probably want to set up a reversing VM anyways. Having a VM will allow you to better isolate the software you are reversing. This can be extremely helpful if you are analyzing a program's network traffic, disk usage, registry modifications, etc. Also, if you mess anything up you can revert the VM. Again, you don't need one for this course but in the future, I would recommend you get one.
Most of the software can be replaced with anything you like. The software I will be using is listed (all of it's free):
- Microsoft Visual C++ Redistributable will allow you to run the programs and DLLs I provide. Ideally you should install Visual Studio with the "Desktop development with C++" workload.
- x64dbg (Comes with x32dbg as well). I will also use the xAnalyzer plugin, you don't need this but I would recommend it.
- dnSpy (preferred) or ILSpy (Used for .NET reversing towards the end).
The software listed here won't be used in the course, but you might want it in the future.
- HIGHLY RECOMMENDED:
- Ghidra (Needs Java JRE and JDK).
- Visual Studio with "Desktop development with C++" installed. I would also recommend installing ".NET desktop development."
- HxD (Hex editor)
- Sysinternals Suite (Various tools to analyze Windows).
- Dependency Walker (Can be used as a GUI alternative of "DUMPBIN" which comes with Visual Studio).
You can choose when to install this software. You will start using it in Chapter 3.
As you can see there is no IDA Pro! With the release of Ghidra, there isn't really a reason to use IDA Freeware or Pro. Although IDA Pro is better (in my opinion), it's not free like Ghidra is. In fact, it's quite expensive. If you prefer IDA you can use it. I'm cheap so I won't be using it.
Some other good software you may want to take a look at some time is Hopper, Radare, and Binary Ninja. Of those, only Radare is free. Hopper has a free version but you can only use it for a certain amount of time.
All of the target software that I wrote and is used in this course can be found in FilesNeeded.
Warning: The files may change over time. I will try to update the course as needed.