The IDA Pro Book : The Unofficial Guide to the World's Most Popular Disassembler, 2/e (Paperback)

Chris Eagle




No source code? No problem. With IDA Pro, the interactive disassembler, you live in a source code-optional world. IDA can automatically analyze the millions of opcodes that make up an executable and present you with a disassembly. But at that point, your work is just beginning. With The IDA Pro Book, you'll learn how to turn that mountain of mnemonics into something you can actually use.

Hailed by the creator of IDA Pro as "profound, comprehensive, and accurate," the second edition of The IDA Pro Book covers everything from the very first steps to advanced automation techniques. You'll find complete coverage of IDA's new Qt-based user interface, as well as increased coverage of the IDA debugger, the Bochs debugger, and IDA scripting (especially using IDAPython). But because humans are still smarter than computers, you'll even learn how to use IDA's latest interactive and scriptable interfaces to your advantage.

Save time and effort as you learn to:

  • Navigate, comment, and modify disassembly
  • Identify known library routines, so you can focus your analysis on other areas of the code
  • Use code graphing to quickly make sense of cross references and function calls
  • Extend IDA to support new processors and filetypes using the SDK
  • Explore popular plug-ins that make writing IDA scripts easier, allow collaborative reverse engineering, and much more
  • Use IDA's built-in debugger to tackle hostile and obfuscated code

Whether you're analyzing malware, conducting vulnerability research, or reverse engineering software, a mastery of IDA is crucial to your success. Take your skills to the next level with this 2nd edition of The IDA Pro Book.


沒有源代碼?沒問題。有了交互式反彙編工具IDA Pro,你可以進入一個無需源代碼的世界。IDA能夠自動分析構成可執行文件的數百萬個操作碼,並呈現給你反彙編結果。但是在這一點上,你的工作才剛剛開始。通過《IDA Pro書籍》,你將學習如何將這些指令碼轉化為實際可用的內容。

《IDA Pro書籍》第二版被IDA Pro的創作者譽為“深入、全面和準確”,涵蓋了從最初的步驟到高級自動化技術的所有內容。你將找到IDA的新基於Qt的用戶界面的完整介紹,以及對IDA調試器、Bochs調試器和IDA腳本(特別是使用IDAPython)的更多介紹。但是因為人類仍然比計算機更聰明,你甚至將學習如何利用IDA的最新交互式和可腳本化界面來提高效率。


- 導航、註釋和修改反彙編結果
- 識別已知的庫函數,以便將分析重點放在代碼的其他區域上
- 使用代碼圖形化快速理解交叉引用和函數調用
- 使用SDK擴展IDA以支持新的處理器和文件類型
- 探索流行的插件,使編寫IDA腳本更加容易,實現協作逆向工程等功能
- 使用IDA內置調試器處理敵對和混淆的代碼

無論你是分析惡意軟件、進行漏洞研究還是逆向工程軟件,精通IDA對你的成功至關重要。通過這本《IDA Pro書籍》第二版,將你的技能提升到新的水平。