Mr. Rc HACKE-RC

## Research_1.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              1 star
            
          
                HACKE-RC
                / Research_1.md
            
            
              Created
              July 5, 2021 14:23
            
          
    something


## resources.md

      
              1 file
            
          
              166 forks
            
          
              3 comments
            
          
              622 stars
            
          
                muff-in
                / resources.md
            
            
              Last active
              April 18, 2024 13:08
            
              
                A curated list of Assembly Language / Reversing / Malware Analysis / Game Hacking-resources
              
          
    Assembly Language / Reversing / Malware Analysis / Game Hacking -resources


⭐Assembly Language

Modern x64 Assembly

https://www.youtube.com/playlist?list=PLKK11Ligqitg9MOX3-0tFT1Rmh3uJp7kA

  
## map_host_drive.ps1
Param(
    [Parameter(Mandatory, Position = 0)]
    [string]$HostDrive,
    [Parameter(Mandatory, Position = 1)]
    [string]$LocalDrive
)

# Script to map a host drive inside a Windows Docker Server Container
# You need to be an admin in the container for this to work.
# Use as .\map_host_drive C: X:

## Malware Analysis Resources.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              8 stars
            
          
                alexander-hanel
                / Malware Analysis Resources.md
            
            
              Last active
              November 28, 2023 02:52
            
              
                Recommended resources for learning reverse engineering (emphasis on malware analysis)
              
          
    Computer Architecture


Crash Course Computer Science

Start here.


Assembly Language

Check out the first two books but download the Intel Software Manuals and use as references.

Assembly Language Step by Step

Easy introduction to Assembly Language


Assembly Language for X86 Processors by Kip Irvine


## reversing_secrets_of_reverse_engineering.txt
## List All Functions containing GenericTable in their name from NTDLL.DLL
dumpbin /EXPORTS "C:\Windows\SysWOW64\ntdll.dll" | grep GenericTable | grep -E -v "Avl$|AvlEx$" | awk {'print $4'} > NTDLL_GenericTable_Methods.txt


##Print RVA (Relative Virtual Address)
dumpbin /EXPORTS "C:\Windows\SysWOW64\ntdll.dll" | grep GenericTable | grep -E -v "Avl$|AvlEx$" | awk {'print $3 " " $4'} > NTDLL_GenericTable_Methods.txt


##Find image base
dumpbin /HEADERS "C:\Windows\SysWOW64\ntdll.dll" | grep "image base"
	Param(
	[Parameter(Mandatory, Position = 0)]
	[string]$HostDrive,
	[Parameter(Mandatory, Position = 1)]
	[string]$LocalDrive
	)

	# Script to map a host drive inside a Windows Docker Server Container
	# You need to be an admin in the container for this to work.
	# Use as .\map_host_drive C: X:
	## List All Functions containing GenericTable in their name from NTDLL.DLL
	dumpbin /EXPORTS "C:\Windows\SysWOW64\ntdll.dll" \| grep GenericTable \| grep -E -v "Avl$\|AvlEx$" \| awk {'print $4'} > NTDLL_GenericTable_Methods.txt


	##Print RVA (Relative Virtual Address)
	dumpbin /EXPORTS "C:\Windows\SysWOW64\ntdll.dll" \| grep GenericTable \| grep -E -v "Avl$\|AvlEx$" \| awk {'print $3 " " $4'} > NTDLL_GenericTable_Methods.txt


	##Find image base
	dumpbin /HEADERS "C:\Windows\SysWOW64\ntdll.dll" \| grep "image base"