EvilZone

Hacking and Security => Reverse Engineering => Topic started by: Andesell on November 23, 2014, 07:13:03 PM

Title: What book to begin with
Post by: Andesell on November 23, 2014, 07:13:03 PM

As title says:

• Practical Reverse Engineering
• Practical Malware Analysis
• Reversing

or any other; aim: write exploits and reverse engineer software / malware

Title: Re: What book to begin with
Post by: SanCliare on November 23, 2014, 07:53:05 PM

Google lenna tutorials. Have fun

Title: Re: What book to begin with
Post by: Deque on November 24, 2014, 01:01:15 PM

Quote from: Andesell on November 23, 2014, 07:13:03 PM

As title says:

• Practical Reverse Engineering
• Practical Malware Analysis
• Reversing

or any other; aim: write exploits and reverse engineer software / malware

These are the best I know, but there are also:

• Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation
• Malware Analyst's Cookbook

In addition it is suggested get some specific books about system internals, certain tools, certain file formats, and malware in general. E.g.:

• Windows Internals
• Inside Windows Debugging
• The Art of Computer Virus Research and Defense
• The Art of Memory Forensics
• The IDA Pro Book

And don't forget books about assembly. You will need them.

Quote from: SanCliare on November 23, 2014, 07:53:05 PM

Google lenna tutorials. Have fun

You should read the question again. (http://fun.resplace.net/Emoticons/smiley/DOH.gif)
Being precise is especially beneficial for programmers and reverse engineers.

Title: Re: What book to begin with
Post by: L0aD1nG on November 24, 2014, 01:33:38 PM

Quote from: Deque on November 24, 2014, 01:01:15 PM

These are the best I know, but there are also:

• Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation
• Malware Analyst's Cookbook

I have this books too, though I have not read any of those two yet. But I can provide the links for ease here:

http://www.caluniv.ac.in/free_book/Cyber-Security/Practical%20Reverse%20Engineering%20x86,%20x64,%20ARM,%20Windows%20Kernel,%20Reversing%20Tools,%20and%20Obfuscation.pdf (http://www.caluniv.ac.in/free_book/Cyber-Security/Practical%20Reverse%20Engineering%20x86,%20x64,%20ARM,%20Windows%20Kernel,%20Reversing%20Tools,%20and%20Obfuscation.pdf)

http://download.adamas.ai/dlbase/ebooks/VX_related/Malware%20Analyst%27s%20Cookbook%20and%20DVD.pdf (http://download.adamas.ai/dlbase/ebooks/VX_related/Malware%20Analyst%27s%20Cookbook%20and%20DVD.pdf)

Title: Re: What book to begin with
Post by: Andesell on November 25, 2014, 08:46:18 PM

Thank you! In what order?

Title: Re: What book to begin with
Post by: d!amond on December 01, 2014, 04:53:08 PM

http://beginners.re/RE_for_beginners-en.pdf

If you start with this book, you won't need another book on the topic in a long time.

Title: Re: What book to begin with
Post by: Andesell on December 01, 2014, 07:07:19 PM

Quote from: d!amond on December 01, 2014, 04:53:08 PM

http://beginners.re/RE_for_beginners-en.pdf

If you start with this book, you won't need another book on the topic in a long time.

So you've read it. Why should I read it? Why is it better than the others?

Title: Re: What book to begin with
Post by: darangal on December 01, 2014, 11:20:00 PM

Are these books for all types of reverse engineering or geared towards either software or hardware?

Title: Re: What book to begin with
Post by: mindoverflow on January 03, 2015, 08:58:29 PM

Not for all architectures. Only for ARM (including Thumb), x86, x86-64.

Title: Re: What book to begin with
Post by: Arkalian on January 22, 2015, 09:19:27 PM

I would definitely go with Practical Malware Analysis. It has labs that you can do that progressively get harder as you get more experienced as well as an accompanying website where you can download the sample lab malware. Also, this is a good webinar with Michael Sikorski and Andrew Honig (The guys who wrote it) that has some good info to help get you started. They both are top Malware researchers/analysts from Mandiant. So it's safe to say that they know what there talking about.

I hope this helps.

Ark

Practical Malware Analysis book (Axon's Link)
http://upload.evilzone.org/download.php?id=6047157&type=zip (http://upload.evilzone.org/download.php?id=6047157&type=zip)

The accompanying website with the labs and sample malware.
http://practicalmalwareanalysis.com/labs/ (http://practicalmalwareanalysis.com/labs/)

Practical Malware Analysis Webinar
https://www.youtube.com/watch?v=1PfVhvtuUDM (https://www.youtube.com/watch?v=1PfVhvtuUDM)

Title: Re: What book to begin with
Post by: Aurora on August 16, 2015, 01:15:07 PM

Thanks, this thread has been helpful. +1 to OP.

Title: Re: What book to begin with
Post by: bn1st on August 16, 2015, 07:18:04 PM

bruh RE for Malware

Books / Links / OS
- The Rootkit Arsenal
- https://zeltser.com/reverse-malware-cheat-sheet/
- Download Remnux

Title: Re: What book to begin with
Post by: novaccainne on October 06, 2015, 02:44:29 PM

Hi , I think there are a lot of good books are published on the internet but I think you should start it with Lena's reverse enginnering tutorial because it shows you the power of reverse enginnering and of course the basics of reverse engineering.  You can download it from tuts4u. It is a very good primer for everyone :)

A lot of good articles can be found on  infosec resources : http://resources.infosecinstitute.com/category/reverse-engineering-2/ .

Tuts4u is also a good site : https://tuts4you.com/download.php

RCE forum is also a good site : http://www.woodmann.com/forum/content.php

Title: Re: What book to begin with
Post by: chris_kzn on October 12, 2015, 09:38:23 PM

Just in case any of you still interested in the book:
Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation

Here is a download link to it as I was unable to obtain it from the previous post:
http://longfiles.com/ni9vhqy717yn/1118787315engin.pdf.html?from=cross-link-fun