Log in

View Full Version : Good books on PE execution and file structure?

dELTA
February 26th, 2001, 07:02
Is there anyone who can recommend some good books about the structure of PE files and the process of their execution?

I would like to get some real detailed knowledge about e.g. how the imports/exports work and are structured, and exactly how the sections and other PE-structure is designed.

I feel that a thorough knowledge about this is really good before being able to do some serious cracking work.

I know that the books by Matt Pietrek are recommended, but they aren't available anymore. :-( So does anyone have any suggestions about good book about this that can be found in the stores today?

Thanks!
Iceman
February 26th, 2001, 07:40
A good overview of PE files is available at MS;s WEB site. nad the file is up to date. Search MSDN online for it.
rot8
February 26th, 2001, 08:48
http://jump.to/ganz
Dokz section
dELTA
February 26th, 2001, 09:13
Over at MSDN I find one article from 1994 by Matt Pietrek, and one article that claims to "describe in detail the internal features of PE/COFF file formats and its parameters". But then the article just ends, without any real content!? I'm sure it's because I'm stupid, but could anyone please tell me how I get to the actual content of this article:

http://support.microsoft.com/support/kb/articles/Q121/4/60.asp

Any link to some other MSDN articles related to this subject, other than these two I mention here, would also be greatly appreciated.

Thanks!
MO`K
February 26th, 2001, 11:34
Chapter 9 -IIRC- Window32 systems programming secrets, Matt Pietrek.

It is there at ganz site. The chapter is very detailed, so prepare plenty of paper to print out, and walk around with for a day or two
BlackB
February 28th, 2001, 07:40
I noticed that downloading from the ganz site extremely slow. so i've uploaded the Pietrek book on my webspace.
http://users.belgacom.net/blackb/PietrekBook.zip
this will be a LOT faster

greets

BlackB
dELTA
February 28th, 2001, 14:45
Thanks BlackB, I noticed it was VERY slow, always stalled after just a few tens of kilobytes.

But I got it with a 3,5 hours Flashget session with 10 threads and 30 second timeouts anyway. :-) But I'm sure other people would like to download that excellent book anyway.
Clandestiny
March 1st, 2001, 18:18
Thanks BlackB,

I d/l the book from your site and it was quite fast :-)

Regards,
Clandestiny