- The IDA Pro Book
- PRAISE FOR THE FIRST EDITION OF THE IDA PRO BOOK
- Acknowledgments
- Introduction
- I. Introduction to IDA
- 4. Getting Started with IDA
- 5. IDA Data Displays
- 6. Disassembly Navigation
- 7. Disassembly Manipulation
- 8. Datatypes and Data Structures
- 9. Cross-References and Graphing
- 10. The Many Faces of IDA
- III. Advanced IDA Usage
- IV. Extending IDA’s Capabilities
- 15. IDA Scripting
- Basic Script Execution
- The IDC Language
- Useful IDC Functions
- Functions for Reading and Modifying Data
- User Interaction Functions
- String-Manipulation Functions
- File Input/Output Functions
- Manipulating Database Names
- Functions Dealing with Functions
- Code Cross-Reference Functions
- Data Cross-Reference Functions
- Database Manipulation Functions
- Database Search Functions
- Disassembly Line Components
- IDC Scripting Examples
- IDAPython
- IDAPython Scripting Examples
- Summary
- 15. IDA Scripting
- The IDA Application Programming Interface
- Summary
- 17. The IDA Plug-in Architecture
- 18. Binary Files and IDA Loader Modules
- 19. IDA Processor Modules
- V. Real-World Applications
- VI. The IDA Debugger
Once you have developed an understanding of how loaders fit into IDA’s modular architecture, you should find that loader modules are no more difficult to create than plug-in modules. Loaders clearly have their own particular subset of the SDK that they rely heavily on, the majority of which resides in loader.hpp, segment.hpp, entry.hpp, and diskio.hpp. Finally, since loaders execute before the processor module has a chance to analyze the newly loaded code, loaders should never bother themselves with any disassembly tasks, such as dealing with functions or disassembled instructions.
In the next chapter, we round out our discussion of IDA modules with an introduction to processor modules, the components most responsible for the overall formatting of a disassembled binary.
-
No Comment