The questions of the investigation of the code of Windows-applications are considered. The format of the executable modules and the structure of the instructions of the Intel microprocessor are described in detail. A full review of the toolkit for examining executable code is provided: debuggers, disassemblers, resource editors, HEX editors, etc. Much attention is paid to working with popular programs for disassembling and debugging SoftlCE and IDA Pro. Examples of research of executable code are given and basic principles of such research are described: identification of program structures, data search, etc. The attached CD contains texts of all the listings described in the book, as well as educational programs.
A copy of the CD attached to the book is present.