This page contains links to all of the tutorials that are contained on this site. A few are written by me but most are written by others and are the copyrights of their respective authors (except Americans who have to pay to get copyright, as opposed to people from the rest of the world who are granted copyright automatically for free as soon as they create something, a useless but interesting piece of information there ;-).
Submiting a Tutorial
If you have written or found a tutorial or reversing paper which you think is relevent to the site then please could you e-mail it to me at my contact address. The type of tutorials that the site needs are those relating to the PE format, different techniques of adding code or just any tutorial related to injecting code into a program. If you write a tutorial then you can submit it in any format you like as long as it looks good in both Netscape and Opera (I suppose IE as well). Please don't use horrible colours which hurt the eye when you try to read as it will just put people off reading your essay. If you need to include any pictures with your essay then please make sure that they are really necessary, we don't want pictures of disassembled code listing when it could easily be typed instead. If possible please include any source code in a zip file which can be downloaded by the reader as it makes your essay easier to read if you don't include the code for entire program in with your explainations. Alternatively you could just stick all of your code references at the end of the document and put links to the relevent pieces. You could try and point out programs which you think would be good targets but I'll probably be working on another program anyway.
Groups of Tutorials
|
Author
|
Title
|
Description
|
|
Iczelion
|
Practical examples of how the PE format works and
examples of code to manipulate it
|
|
|
_mammon
|
Sample taken from Mammon_'s Tales to his Grandson,
Illustrations of an skeleton: The PE format
|
|
|
Micheal J. O'Leary (Microsoft)
|
A document explaining....binary resource formats in
the win32 environment
|
|
|
Luevelmeyer
|
Extremely useful. Gives details on PE format, how
resources are represented in executables and lots of other useful info
on the PE format
|
|
|
Author
|
Title
|
Description
|
|
Lord Rhesus
|
Crap essay by me calculating offsets and op-codes
by hand
|
|
|
c0v3rt+
|
Very good essay describing how to add code to an existing
section, extending an existing section and adding a new section
|
|
|
Author
|
Title
|
Description
|
|
DaFixer
|
Very good tutorial telling you how Delphi applications
work and how functionality can be added to them
|
|
|
LaZaRuS
|
Useful for exploiting the runtime libraries of programs
compiled by these apps
|
|
|
Dracon
|
This is an extremely useful technique which is useful
for adding large amounts of code
|
|
|
Author
|
Title
|
Description
|
|
razzia
|
The oldest functionality adding essay that I have
found. razzia adds code to show line numbers in notepad
|
|
|
NeuRaL_NoiSE
|
Excellent essay. Explains how to add lots of features
to notepad
|
|
|
LaZaRuS
|
Adding formular editor to calculator
|
|
|
defiler
|
How to extend notepad's functionality by adding code
to caves
|
|
|
SantMat
|
Finishing off Defiler's CryptPad!
|
|
|
Harlequin
|
Essay about exploiting a potential security problem
in the Shields up program. Relevant to code injection? He injects the
exploting code into the executable!
|
|
|
Harlequin
|
Excellent set of essays about adding functionality
to WDASM to include a patcher, command line file entry, a recent file
menu and a quick editor. Phew!
|
|
|
Harlequin
|
Harlquin explains how to protect windows from retro-virus
attacks which shut down anti-virus software unconditionally using TerminateProcess(),
by injecting code directly into kernel32.dll
|
|
|
Author
|
Title
|
Description
|
|
Lord Rhesus
|
My solution to Extasy's OpenMe
|
|
|
SantMat
|
SantMat's Solution (written a day before mine)
|
|
And that's the end of the page!