软件加密 技术内幕
第1章PE文件格式深入研究1.1PE文件格式格式纵览1.1.1区块(Section)1.1.2相对虚拟地址(RelativeVirtualAddresses)1.1.3数据目录1.1.4输入函数(ImportingFunctions)1.2PE文件结构1.2.1TheMS-DOS头部1.2.2IMAGE_NT_HEADERS头部1.2.3区块表(TheSectionTable)1.2.4各种块(Sections)的描述1.2.5输出表1.2.6输出转向(ExportForwarding)1.2.7输入表1.2.8绑定输入(Boundimport)1.2.9推迟装入数据(DelayloadData)1.2.10资源1.2.11基址重定位(BaseRelocations)1.2.12调试目录(DebugDirectory)1.2.13NET头部1.2.14TLS初始化1.2.15程序反常数据第2章PE分析工具编写2.1文件格式检测2.2FileHeader和OptionalHeader内容的读取2.3得到数据目录(DataDircetory)信息2.4得到块表(SectionTable)信息2.5得到输出表(ExportTable)信息2.6【软件加密+技术内情】.chm
(Chapter 1 In-depth study of PE file format 1.1 Overview of PE file format 1.1.1 Section 1.1.2 Relative Virtual Addresses 1.1.3 Data directory 1.1.4 Importing Functions 1.2 PE file structure 1.2. 1 TheMS-DOS header 1.2.2 IMAGE_NT_HEADERS header 1.2.3 The Section Table 1.2.4 Description of various blocks (Sections) 1.2.5 Output table 1.2.6 Output forwarding (ExportForwarding) 1.2.7 Input table 1.2. 8 Binding input (Boundimport) 1.2.9 Delay loading data (DelayloadData) 1.2.10 Resource 1.2.11 Base address relocation (BaseRelocations) 1.2.12 Debug directory (DebugDirectory) 1.2.13NET header 1.2.14TLS initialization 1.2. 15 Program Abnormal Data Chapter 2 PE Analysis Tool Writing 2.1 File Format Detection 2.2 Reading the Contents of FileHeader and OptionalHeader 2.3 Obtaining Data Directory Information 2.4 Obtaining SectionTable Information 2.5 Obtaining Export Table Information 2.6
【Software encryption technical inside story】.chm)
页:
[1]