Dailydave mailing list archives
Re: good reverse engineering intro
From: Gadi Evron <ge () linuxbox org>
Date: Fri, 19 Nov 2004 15:16:49 +0200
Ian Melven wrote:
hi everyone, this is a link to a paper with a disassembly of the bagel/beagle worm/virus. it's most notable for being a good introduction to reverse engineering, with a great overview of the basics (for x86) including registers, PE file format, etc. it then goes into how the author approached the project, including how to start reversing something and is then followed by a painstakingly detailed commented disassembly of the worm/virus. he comes up with some source code based on his reversing also. the paper is at : http://rozinov.sfs.poly.edu/papers/bagle_analysis_v.1.0.pdf i highly recommend it for anyone looking for a starting place with reverse engineering, it's a good read even if you know what you're doing already too.
You read ./ too! I am not alone! :o) _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com https://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- good reverse engineering intro Ian Melven (Nov 19)
- Re: good reverse engineering intro Gadi Evron (Nov 19)
- Re: good reverse engineering intro Dave Aitel (Nov 19)
- Re: good reverse engineering intro Gadi Evron (Nov 19)