good reverse engineering intro

[Ian Melven <ian.melven () gmail com>]

hi everyone,

this is a link to a paper with a disassembly of the bagel/beagle
worm/virus. it's most notable for being a good introduction to reverse
engineering, with a great overview of the basics (for x86) including
registers, PE file format, etc. it then goes into how the author
approached the project, including how to start reversing something and
is then followed by a painstakingly detailed commented disassembly of
the worm/virus. he comes up with some source code based on his
reversing also.

the paper is at : http://rozinov.sfs.poly.edu/papers/bagle_analysis_v.1.0.pdf

i highly recommend it for anyone looking for a starting place with
reverse engineering, it's a good read even if you know what you're
doing already too.

have a happy friday
ian
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
https://lists.immunitysec.com/mailman/listinfo/dailydave