NSA plans to release its own high-performance reverse engineering tool 'GHIDRA' for free

by EFF Photos

The US National Security Agency (NSA) has announced that it will announce a reverse engineering framework called 'GHIDRA' at the RSA Conference, an encryption and information security conference, to be held in early March 2019. GHIDRA will be released as open source software after being unveiled at the RSA Conference.

Come Get Your Free NSA Reverse Engineering Tool! (Overflow) | RSA Conference
https://www.rsaconference.com/Library/presentation/USA/2019/come-get-your-free-nsa-reverse-engineering-tool-overflow

NSA will release a free tool for reverse engineering malware
https://www.engadget.com/2019/01/06/nsa-releasing-code-reverse-engineering-tool/

The US Department of Defense intelligence agency, the NSA, has the world's highest level of encryption and security technology. Most of these technologies are classified as national secrets, but GHIDRA is not particularly confidential. However, its existence became widely known to the general public in March 2017 when the confidential document ' Vault 7 ' of the US Central Intelligence Agency (CIA) was exposed.

WikiLeaks releases confidential material 'Vault 7' that reveals the reality of CIA's top secret intelligence operations such as 'hacking and assassinating a car' and 'recording room conversations on TV' --GIGAZINE

The name of GHIDRA was also listed in 'Vault 7', and it became clear that the CIA also used GHIDRA. Charlie Miller, a former NSA employee and security researcher, also revealed that GHIDRA was used in the NSA 13 years ago.

Damn GHIDRA still exists at NSA? That tool was already there when I left 13 years ago! Https://t.co/6z2eLRW6pZ

— Charlie Miller (@ 0xcharlie) January 3, 2019

GHIDRA is a GUI-based disassembler . Disassembler analyzes software and malware from the binary of an executable file and converts it into an assembly language that can be read by humans. 'GHIDRA' is coded in Java and works on Windows, macOS, Linux, Android and iOS.

'IDA Pro ' is a well-known disassembler on the market, but its license is quite expensive, so it is generally difficult to get started. The GHIDRA developed by the NSA not only includes all the features expected of these high-end commercial tools, but also has new features and other extensions independently developed by the NSA. By releasing GHIDRA as open source software, we can expect to improve the security technology of the entire industry.

GHIDRA will be published on the NSA's GitHub page after the RSA Conference is over.

National Security Agency · GitHub
https://github.com/nationalsecurityagency

Ghidra
https://ghidra-sre.org/