Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Download
Standard view
Full view
of .
Save to My Library
Look up keyword or section
Like this
2Activity

Table Of Contents

What is Disassembly?
Assemblers
Assembler Concepts
Intel Syntax Assemblers
(x86) AT&T Syntax Assemblers
Other Assemblers
Compilers
Common C/C++ Compilers
What is a Disassembler?
x86 Disassemblers
Disassembler Issues
Decompilers
Common Decompilers
Debuggers
Windows Debuggers
Linux Debuggers
Debuggers for Other Systems
Debugger Techniques
Hex Editors
Windows Hex Editors
Linux Hex Editors
Hex Editors for Mac
Other Tools for Windows
GNU Tools
Other Tools for Linux
Windows Versions
Virtual Memory
System calls and interrupts
Win32 API
Native API
ntoskrnl.exe
Win32K.sys
Win64 API
Windows Vista
Windows CE/Mobile, and other versions
"Non-Executable Memory"
COM and Related Technologies
Remote Procedure Calls (RPC)
MS-DOS COM Files
MS-DOS EXE Files
PE Files
Relative Virtual Addressing (RVA)
File Format
Code Sections
Imports and Exports - Linking to other modules
Exports
Imports
Relocations
Alternate Bound Import Structure
Windows DLL Files
System Architecture
Configuration Files
Shells
GUIs
File Analyzers
a.out Files
ELF Files
Relocatable ELF Files
ESP In Action
Reading Without Popping
Data Allocation
Standard Entry Sequence
Standard Exit Sequence
Non-Standard Stack Frames
Local Static Variables
Example: Number of Parameters
Example: Standard Entry Sequences
Notes on Terminology
Standard C Calling Conventions
C++ Calling Convention
Note on Name Decorations
Microsoft C Compiler
GNU C Compiler: GCC
Example: C Calling Conventions
Example: Named Assembly Function
Example: Unnamed Assembly Function
Example: Another Unnamed Assembly Function
Example: Name Mangling
Branching
If-Then
Switch-Case
Ternary Operator ?:
Example: Identify Branch Structures
Example: Convert To C
Do-While Loops
Other Loop Types
Example: Identify Purpose
Example: Complete C Prototype
Example: Decompile To C Code
How to Spot a Variable
.BSS and .DATA sections
"Static" Local Variables
Signed and Unsigned Variables
Floating-Point Values
Global Variables
Constants
"Volatile" memory
Simple Accessor Methods
Simple Setter (Manipulator) Methods
Example: Identify C++ Code
Arrays
Structures
Advanced Structures
Identifying Structs and Arrays
Linked Lists and Binary Trees
Object-Oriented Programming
Classes
Classes Vs. Structs
Float to Int Conversions
FPU Compares and Jumps
Example: Floating Point Arithmetic
Stages of Optimizations
Loop Unwinding
Inline Functions
Example: Optimized vs Non-Optimized Code
Example: Manual Optimization
Example: Trace Variables
Example: Decompile Optimized Code
Example: Instruction Pairings
Example: Duff's Device
What is Code Obfuscation?
Interleaving
Non-Intuitive Instructions
Obfuscators
Code Transformations
Opaque Predicates
Code Encryption
Detecting Debuggers
IsDebuggerPresent API
PEB Debugger Check
Timeouts
Detecting SoftICE
Detecting OllyDbg
Wikimedia Resources
External Resources
0. PREAMBLE
1. APPLICABILITY AND DEFINITIONS
2. VERBATIM COPYING
3. COPYING IN QUANTITY
4. MODIFICATIONS
5. COMBINING DOCUMENTS
6. COLLECTIONS OF DOCUMENTS
7. AGGREGATION WITH INDEPENDENT WORKS
8. TRANSLATION
9. TERMINATION
10. FUTURE REVISIONS OF THIS LICENSE
0 of .
Results for:
No results containing your search query
P. 1
X86_Disassembly

X86_Disassembly

Ratings: (0)|Views: 3,848|Likes:
Published by nexys

More info:

Published by: nexys on Jul 13, 2011
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

07/13/2011

pdf

text

original

You're Reading a Free Preview
Pages 4 to 47 are not shown in this preview.
You're Reading a Free Preview
Pages 51 to 74 are not shown in this preview.
You're Reading a Free Preview
Pages 78 to 88 are not shown in this preview.
You're Reading a Free Preview
Pages 92 to 120 are not shown in this preview.
You're Reading a Free Preview
Pages 124 to 151 are not shown in this preview.

Activity (2)

You've already reviewed this. Edit your review.
1 thousand reads
1 hundred reads

You're Reading a Free Preview

Download
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->