Guest User

Setup IDA Free

a guest
Sep 18th, 2016
926
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.27 KB | None | 0 0
  1. ****************** STEPS TO SETUP IDA Free ***********************
  2. Download and install: https://www.hex-rays.com/products/ida/support/download_freeware.shtml
  3. Download and install: Visual C++ Redistributable for Visual Studio - https://www.microsoft.com/en-us/download/details.aspx?id=48145
  4. Add this environment variable: _NT_SYMBOL_PATH=srv*http://msdl.microsoft.com/download/symbols
  5. Load IDA Free!
  6. ******************************************************************
  7.  
  8. ****************** How to load and setup mshtml.dll (pre-patch) in IDA Free ***********************
  9. IDA Free disassembles 32 bit files, but I imagine you are in a x64 bit system so if we just happily open mshtml.dll on IDA, it will complain saying that "IDA Free only works with 32 bit files". Nothing to worry, Windows has several copies of its dlls in their 32 bit versions in c:\windows\SysWOW64\ (Thanks EricLaw!). So, copy c:\windows\SysWOW64\mshtml.dll to a different folder, and load that file from inside IDA.
  10.  
  11. Accept defaults and go to the gym because IDA has work to do, for about two hours. If you are using a notebook you will hear the fan screaming, but no worries, everything will be better once IDA finishes its analysis. On paid versions of IDA you can start working after the initial analysis (~10 mins), and the free version has the same capability but if you start working at that point, you will want to throw your PC out of the window (instead of throwing Windows out of your PC) Patience pays or at least saves you $ 1129 from buying IDA Pro [ https://www.hex-rays.com/products/ida/support/orderforms/namedworld.pdf ]. I see now we are on the same page =) We can wait that hour. The good news is that once we save the dissasembled file, we won't need to wait anymore for future analysis.
  12.  
  13. OK. Assuming IDA finished its analysis, let's do a couple of things before we start:
  14. 1) We will demangle names so they are more readable for us, easier on our eyes.
  15. 2) We will maximize the strings and function windows making IDA Free look a bit more like IDA Pro.
  16. 3) Finally, on the Strings tab, click on the "String" column so we sort them alphabetically, and press the "Home" key so it scrolls up.
  17. 4) We setup the strings window so it shows UNICODE chars.
  18. ******************************************************************
Add Comment
Please, Sign In to add comment