Ghidra ndeimwe yemazhinji akavhurwa sosi software mapurojekiti akagadzirwa mukati me Sangano rekuchengetedzwa kwenyika (NSA) yeUnited States of America (USA). Izvo zvinofanirwa kucherechedzwa kuti, muna Chikumi 2017 liyo NSA yakapa runyorwa rwezvishandiso izvo zvave kugadzira izvo zvava kuwanikwa pachena kubudikidza neOpen Source sechikamu cheiyo Ruzivo rweKuchinjisa Chirongwa (TTP).
Ghidra inodzosera mainjiniya dhizaini yakagadzirwa neNSA Research Division yeiyo NSA Cybersecurity Mission. Inobatsira kuongororwa kwekodhi yakaipa uye malware, senge mavhairasi, uye zvinogonesa nyanzvi kuti vanzwisise zvirinani kushomeka mumasaiti avo nemaitiro.
Zvinyorwa zve ghydra
Pakati pezvakakosha maficha eGhidra, isu tinowana
- Chishandiso chinouya nesuti yesoftware yekuongorora maturusi kuongorora yakanyorwa kodhi pamapuratifomu akasiyana siyana, anosanganisira Windows, macOS, uye Linux.
- Chimiro chine masimba anosanganisira kusanganisa, kuunganidza, kuparara, kugadzira girafu uye kunyora, uye mazana ezvimwe zvinhu.
- Chishandiso chinotsigira akasiyana siyana epurosesa kuraira seti uye mafomati anokwanisa uye inogona kumhanyisa mune inopindirana uye otomatiki maitiro.
- Iko kugona kwevashandisi kugadzira avo veGhidra zvinhu uye / kana zvinyorwa vachishandisa pachena API.
Chirongwa ichi chinosanganisira akasiyana siyana patent tekinoroji munzvimbo dzakawanda dzehunyanzvi, idzo dzinotevera dzinogona kusimbiswa.
Apache Kuunganidza
Inopa yakasimba uye inotyisa yekuchengetedza dhata uye kudzosa. Iyo inowedzera maseru-based yekuwana kudzora uye sevha-parutivi kuronga mashandiro ayo anogona kugadzirisa makiyi / kukosha mapaundi pane akasiyana mapoinzi munzira yekugadzirisa dhata.
CASA (Chitupa Chiremera Mamiriro Ekuzivisa)
Inoratidzira zvitupa zvisiri izvo kubva kune vakavimbika zvitupa zviremera paWindows masystem. CASA inowanikwa seSplunk app.
Java PATHFINDER MANGO (JPF-MANGO)
Yakasimba kodhi yekuongorora chishandiso kunoenderana nenzira dzepamutemo. Icho chikamu cheNASA's Ames Java PathFinder projekiti, kuongorora Java inogoneka mabhinari (bytecode).
NIFI APACHE
Shandura kuyerera kwedata pakati pesystem. NiFi inoshandisa kuyerera-based programming mazano uye kugadzirisa zvinowanzoitika dhata kuyerera matambudziko anotarisana nemabhizinesi.
Zvimwe zve Kugona kwepamusoro-soro kweApache NiFi uye zvinangwa zvinosanganisira:
- iyo webhu-based mushandisi interface inopa isina musono ruzivo pakati pekugadzira, kutonga, mhinduro uye nekutevera
- Yakanyanya inogadziriswa software: semuenzaniso, simba rekutanga rinogona kuiswa kana kuyerera kuchinjika panguva yekumhanya
- Kwayakabva iyo data: chishandiso chinopa mukana wekutevera kuyerera kwedata kubva pakutanga kusvika pakupedzisira
- Yakagadzirirwa kuwedzera: neichi chishandiso iwe unogona kugadzira yako wega maprosesa uye zvimwe
- Chengetedzo - Tumira SSL, SSH, HTTPS, zvakavanzika zvinyorwa, zvichingodaro. Iyo zvakare ine yakawanda-tenant mvumo pamwe neyemukati mvumo / mutemo manejimendi.
KUZIVA
Tarisa kuvimbika kwesystem nekumisikidza chiyero chakakosha cheiyo Inovimbika Platform Module (TPM) yehurongwa uye kuongorora shanduko mune iyo chiyero. Pakutanga, zvichibva paNSA Host Kuvimbika software pakutangisa (HIS).
Iwo makuru maficha anosanganisira:
- Tsigiro yemahara makuru eLinux anoshanda masisitimu
- PCR-based based reporting zvirongwa nemitemo yemitemo.
- RESTful-based query API
- Kuitwa kwewebhu portal / graphical rejista interface.
- Kufananidza kwenhoroondo PCR dhata;
- Whitelist manejimendi
- inoshanduka yekupinda kudzora kune yekupupura sevha
- Tomcat 2-nzira SSL / TLS inotsigira yemubvunzo APIs
- SAML inoshuma.
Nzira yekuita sei Ghidra paLinux?
Ghidra ine webhusaiti yepamutemo kwaunogona kuwana rubatsiro inowanikwa kune vanogadzira vanoda kuishandisa, iwe uchazoziva zvakawanda nezve maitiro ekuiisa, kuishandisa, nezvimwe.
Iyo NSA yakaendawo kunetsa kuti ipe FAQ iyo ichavandudzwa zvichibva pamibvunzo ingangobvunzwa nevagadziri munharaunda.
Iyo yekubatanidza kwaunogona kutarisa izvi uye kurodha ichi chimiro izvi.