Jump to content
Community Announcements, Giveaways & More!

Having Issues with IDA Search Functions...

Ambrosianyc

By Ambrosianyc
in Help & Support

 Share

14 posts in this topic

Recommended Posts

Ambrosianyc Experienced

Ambrosianyc 117
  •   iPhone 7 
  •   13.3

    • Posted
    Posted

    I'm using IDA on a mac, searching for 10227FF68 but no search result is coming up in IDA-View A, or any other view. I did a test search in Hex view for a line i was literally looking at, and not even a result came up for that, even though it obviously exists, since I was staring at it right on the screen.

    When I loaded the executable this first popped up, is that why i'm having issues? Can't believe how hard this is, for seemingly no good reason. 

    Here are some screenshots: https://ibb.co/album/mv1FyL 

    Rook iOS God

    Rook 555.6k
  •   iPad Pro (2nd gen) 
  •   17.4
  • Donor
  •  

    • Posted
    Posted
    9 hours ago, Ambrosianyc said:

    10227FF68

    This looks like an offset.

    So just press “G” while in IDA and paste the offset and hit enter.

    Ambrosianyc Experienced

    Ambrosianyc 117
  •   iPhone 7 
  •   13.3

    • Posted
    • Author
    Posted
    4 hours ago, Rook said:

    This looks like an offset.

    So just press “G” while in IDA and paste the offset and hit enter.

    Didnt work :/ I’m not sure my binary loaded properly. I included a screenshot above of the message that popped up when i first loaded it. Said no entry point could be identified and to choose it myself… the hex view appears though, but I’m not sure if it’s fully loaded or not. IDA-View A looks weird, like a shell

     

    Rook iOS God

    Rook 555.6k
  •   iPad Pro (2nd gen) 
  •   17.4
  • Donor
  •  

    • Posted
    Posted
    15 minutes ago, Ambrosianyc said:

    @Rook - Can you tell me what this means? https://ibb.co/JCSmB7Y

    Can you try via Hopper?

    I don't remember if IDA Freeware worked well with ARM64 executables.

    Ambrosianyc Experienced

    Ambrosianyc 117
  •   iPhone 7 
  •   13.3

    • Posted
    • Author
    Posted
    1 minute ago, Rook said:

    Can you try via Hopper?

    I don't remember if IDA Freeware worked well with ARM64 executables.

    What's Hopper?     Yeah it doesn't, it just gave the option to load it as a binary instead, so that's what I did, but that error message came up. I assumed it loaded properly since the Hex viewer looked loaded, but perhaps it wasnt 

    Rook iOS God

    Rook 555.6k
  •   iPad Pro (2nd gen) 
  •   17.4
  • Donor
  •  

    • Posted
    Posted
    4 minutes ago, Ambrosianyc said:

    What's Hopper?     Yeah it doesn't, it just gave the option to load it as a binary instead, so that's what I did, but that error message came up. I assumed it loaded properly since the Hex viewer looked loaded, but perhaps it wasnt 

    Hopper Disassembler is the same or similar to IDA and it's free.

    Otherwise, you'll have to find a cracked version of IDA to use.

    Ambrosianyc Experienced

    Ambrosianyc 117
  •   iPhone 7 
  •   13.3

    • Posted
    • Author
    Posted
    17 minutes ago, Rook said:

    Hopper Disassembler is the same or similar to IDA and it's free.

    Otherwise, you'll have to find a cracked version of IDA to use.

    gotcha. is 010 Editor the same? I have the full version of that

    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now
     Share
    Go to topic listing
    ×
    ×
    • Create New...

    Important Information

    We would like to place cookies on your device to help make this website better. The website cannot give you the best user experience without cookies. You can accept or decline our cookies. You may also adjust your cookie settings. Privacy Policy - Guidelines