The IDA Pro Book
by Eagle, ChrisFormat: Trade Paper
Pub. Date: 2008-08-15
Publisher(s): No Starch Press
Other versions by this Author
List Price: $64.14
Rent Book
Select for Price
Rent Digital
$54.99
New Book
We're Sorry
Sold Out
Used Book
We're Sorry
Sold Out
How Marketplace Works:
- This item is offered by an independent seller and not shipped from our warehouse
- Item details like edition and cover design may differ from our description; see seller's comments before ordering.
- Sellers much confirm and ship within two business days; otherwise, the order will be cancelled and refunded.
- Marketplace purchases cannot be returned to eCampus.com. Contact the seller directly for inquiries; if no response within two days, contact customer service.
- Additional shipping costs apply to Marketplace purchases. Review shipping costs at checkout.
Summary
IDA Pro is a commercial disassembler and debugger that allows reverse engineers to learn how specific programs work. It is the de facto standard for the analysis of hostile code and vulnerability research and the tool that programmers around the world use to pick apart compiled software to see how it works. The IDA Pro Book provides a top-down overview of IDA Pro and its potential uses in the software reverse engineering field. After a thorough introduction to the origins and basic operation of IDA Pro, the book goes into depth on how to use IDA Pro. Author Chris Eagle, a recognized expert in the field, introduces topics in the order in which most users encounter them, so that experienced users can easily jump in at the most appropriate point. Eagle covers a variety of real-world reverse engineering challenges and offers strategies to deal with them, such as disassembly manipulation, graphing, and effective use of cross references. Eagle also shows readers how to extend IDA s capabilities with scripting, plugins, and loader modules.
Author Biography
Chris Eagle is a Senior Lecturer and Associate Chairman of Computer Science at the Naval Postgraduate School in Monterey, CA. He is a co-author of Gray Hat Hacking and has spoken at numerous security conferences, including Blackhat, Defcon, Toorcon, and Shmoocon. Along with his team, the Sk3wl0fR00t, he is a past winner of the Defcon Capture the Flag hacking competition.
Table of Contents
| Foreword | |
| Introduction to IDA | |
| Introduction to Disassembly | p. 3 |
| Reversing and Disassembly Tools | p. 15 |
| IDA Pro Background | p. 31 |
| Basic IDA Usage | |
| Getting Started with IDA | p. 43 |
| IDA Data Displays | p. 61 |
| Disassembly Navigation | p. 81 |
| Disassembly Manipulation | p. 103 |
| Datatypes and Data Structures | p. 129 |
| Cross-References and Graphing | p. 167 |
| The Many Faces of IDA | p. 187 |
| Advanced IDA Usage | |
| Customizing IDA | p. 201 |
| Library Recognition Using FLIRT Signatures | p. 211 |
| Extending IDA's Knowledge | p. 227 |
| Patching Binaries and Other IDA Limitations | p. 237 |
| Extending IDA's Capabilities | |
| Scripting with IDC | p. 249 |
| The IDA Software Development Kit | p. 279 |
| The IDA Plug-in Architecture | p. 309 |
| Binary Files and IDA Loader Modules | p. 337 |
| IDA Processor Modules | p. 363 |
| Real-World Applications | |
| Compiler Variations | p. 399 |
| Obfuscated Code Analysis | p. 417 |
| Vulnerability Analysis | p. 457 |
| Real-World IDA Plug-ins | p. 479 |
| The IDA Debugger | |
| The IDA Debugger | p. 497 |
| Disassembler/Debugger Integration | p. 521 |
| Linux, OS X, and Remote Debugging with IDA | p. 545 |
| Using IDA Freeware 4.9 | p. 551 |
| IDC/SDK Cross-Reference | p. 555 |
| What's New in IDA 5.3 | p. 573 |
| Index | p. 577 |
| Table of Contents provided by Blackwell. All Rights Reserved. |
An electronic version of this book is available through VitalSource.
This book is viewable on PC, Mac, iPhone, iPad, iPod Touch, and most smartphones.
By purchasing, you will be able to view this book online, as well as download it, for the chosen number of days.
Digital License
You are licensing a digital product for a set duration. Durations are set forth in the product description, with "Lifetime" typically meaning five (5) years of online access and permanent download to a supported device. All licenses are non-transferable.
More details can be found here.
A downloadable version of this book is available through the eCampus Reader or compatible Adobe readers.
Applications are available on iOS, Android, PC, Mac, and Windows Mobile platforms.
Please view the compatibility matrix prior to purchase.