PE Format Analysys

Hacking 2008. 12. 18. 01:32

1. PE Format Complete Analasys

http://hdp.null2root.org/reversing/PE_analysis_anesra.pdf


2.  Once Upon A Time In PE

http://web.kaist.ac.kr/~taekwonv/pe_icezlion.htm


or


http://win32assembly.online.fr/


http://win32assembly.online.fr/pe-tut1.html (1. Overview Of PE File Format)

http://win32assembly.online.fr/pe-tut2.html (2. Detecting a Valid PE File)

http://win32assembly.online.fr/pe-tut3.html (3. File Header)

http://win32assembly.online.fr/pe-tut4.html (4. Optional Header)

http://win32assembly.online.fr/pe-tut6.html (5. Section Table)

http://win32assembly.online.fr/pe-tut7.html (6. Import Table)

http://win32assembly.online.fr/pe-tut7.html (7. Export Table )


Import Table

http://web.kaist.ac.kr/~taekwonv/pe_iat.htm


3. PE File Analysis  - With easy explanation, With C++ Exercises


http://kkamagui.springnote.com/pages/407001


4. Peering Inside the PE: A Tour of the Win32 Portable Executable File Format (by Matt Pietrek) - 1994년

http://msdn.microsoft.com/en-us/magazine/ms809762.aspx


번역:http://blog.naver.com/gekigang/140016674843 


5. An In-Depth Look into the Win32 Portable Executable File Format (by Matt Pietrek) - 2002년

An In-Depth Look into the Win32 Portable Executable File Format, Part 2

(위의 글을 Win32의 변화에 맞추어 같은 저자가 다시 쓴 글)

http://msdn.microsoft.com/en-us/magazine/bb985992.aspx

http://msdn.microsoft.com/en-us/magazine/cc301805.aspx


http://msdn.microsoft.com/en-us/magazine/cc301808.aspx


6. Physical Layout of a .NET Assembly

http://www.informit.com/articles/article.aspx?p=25350


7. PE Reference (The PE file format by LUEVELSMEYER)

http://webster.cs.ucr.edu/Page_TechDocs/pe.txt


http://win32assembly.online.fr/files/pe1.zip


8. PE File Structure Diagram


http://www.openrce.org/reference_library/files/reference/PE%20Format.pdf


9. Wikipedia

http://ko.wikipedia.org/wiki/PE_%ED%8F%AC%EB%A7%B7


* Introduction of multiple ways for PE file modification

http://web.kaist.ac.kr/~taekwonv/


Free PE Editor - Explorer Suite

http://www.ntcore.com/exsuite.php


* Visual Studio Tool (...\vc\bin folder) - dumpbin


i.e. dumpbin /header "PE FILE"


Shows File Header, Optional Header and etc.

'Hacking' 카테고리의 다른 글

Red Hat Update for Kernel  (0) 2008.12.18
Microsoft Internet Explorer Data Binding Vulnerability  (0) 2008.12.18
Buffer Overflow  (0) 2008.12.18
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities  (0) 2008.12.17
Getting Started Reverse Engineering  (0) 2008.12.16
Posted by CEOinIRVINE
l
블로그 이미지
Information Security & US & Life & Love & Fashion & Hacking & Passion hack, web security, game security, game hack, fps, ava, wow, starcraft II, soldier front, gunz, reverse engineering, SQL injection, XSS, hacking, penetration testings, IT, internet technlogoy, security, penetratoin testing, XSS, XSRF CEOinIRVINE

최근에 올라온 글

공지사항

카테고리

CEOinIRVINE (2282)
Editorials (4)
Finance & EMBA (1)
Fashion (239)
IT (215)
Hacking (266)
Online Game (17)
Vocabulary (14)
iLoveBlackberry (2)
Business (1108)
Politics (165)
US News (115)
World News (63)
Career Consulting (8)
Apple (5)
Car (13)
Travel (5)
Irvine (3)
Sports (3)
recipe (1)
Music (15)
TVs (11)
Spanish (1)
Cyber Law (1)
Perl (3)
Java (1)
Artificial Intelligence (1)
Stock (1)

태그목록

달력

«   2025/01   »
1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31

링크

  • Total :
  • Today :
  • Yesterday :
tistory 티스토리 가입하기!
rss

최근에 달린 댓글

최근에 받은 트랙백

글 보관함

티스토리툴바