Chapter 2

• Cygwin tools for Windows
• PE Tools
• The PEID Utility
• Gaobot Description
• objdump Documentation
• GNU binutils
• dumpbin documentation
• C++ name mangling
• Distorm disassembler
• The NASM disassembler
• The Metasploit exploitation framework

Chapter 3

• IDA Hall of Shame
• IDA Freeware
• IDA Demo Version
• IDA Supported Processors
• IDA Order form
• IDA support
• Woodman RE forums
• IDA Plugin Writers Guide
• The IDA Palace (archive site)
• Ilfak's blog

Chapter 7

Chapter 8

• MSDN Reference Library
• Copying structs, enums between databases (Registration required)
• Reversing Microsoft Visual C++
• Reversing C++

Chapter 9

• Wingraph32 Source Code
• Graph Description Language
• Paimei reversing framework
• BinNavi binary navigation

Chapter 10

• Hex-Rays IDA downloads page
• VGA Fonts for X
• IDA Linux X11 TVision port
• aiSee Graph Layout Software
• iTerm terminal for OS X
• The MacPorts Project Official Homepage
• CGI background material
• Batch analysis with IDA
• Background IDA on Linux
• WINE
• FontForge
• FreeType
• Microsoft Core Fonts
• Building WINE on OS X
• CrossOver Mac
• IDA + IDA Python on wine/Linux
• Microsoft Core Fonts Packages

Chapter 11

• .hlp file for x86 instructions
• Using Windows .hlp files on Vista/Windows 7

Chapter 12

• Hex-Rays paper on FLIRT
• OpenSSL Encryption Library
• Hex-Rays Flair utilities
• IDB to PAT file plugin

Chapter 13

• Hex-Rays IDA downloads page
• Simplex method in IDA Pro

Chapter 14

• IDC Scripts for PE file manipulation
• Source for IDA DIF file processor

Chapter 15

• Hex-Rays IDA support forums (Registration required)
• Source for Chapter 15 Examples
• Defcon home page
• The IDA Palace (Archive site)

Chapter 16

• Steve Micallef's Ida Plugin Writing Guide

Chapter 17

• IDA Python home page
• Old IDA Python site
• Tennable's mIda IDL generator plugin
• IDA MDI Window
• IDA x86 emulator plugin

Chapter 18

• Binary loading example
• PE COFF File format
• The tcpdump packet capture tool
• The Wireshark network analyzer

Chapter 19

• Rolf Rolles' HyperUnpackMe2 processor module
• Python home page
• Python opcode reference

Chapter 20

• Microsoft RTTI Analysis scripts
• WinMain Function Reference
• CodeGear (formerly Borland) free compiler
• Visual C++ runtime error checks

Chapter 21

• The Shiva ELF Obfuscator
• Crash Course in Win32 SEH
• The UPX Executable Packer
• The Aspack Executable Packer
• The teLock Executable Packer
• The Burneye ELF Obfuscator
• Shiva, ELF Encryption Tool
• The WinLicense Binary Obfuscation Tool
• Quick Unpack unpacking utility (Russian) or Quick Unpack unpacking utility
• VMware Virtualization Tools
• Windows Shellcode Overview
• National Vulnerability Database Stack-based buffer overflow in DataRescue Interactive Disassembler (IDA) Pro 4.7
• iDefense DataRescue Interactive Disassembler Pro Buffer Overflow Vulnerability
• Virtual Machine Detection Routines
• Joanna Rutkowska's redpill Virtualization Detection Paper
• Virtualization Detection
• Process Monitor v1.37
• Microsoft Sysinternals Tools
• The Wireshark Network Analyzer
• Nicolas Falliere's Windows Anti-Debug Reference
• Anti Reverse Engineering Techniques
• Chapter 21 Example Listings
• IDA x86 emulator plugin

Chapter 22

• Hacking: The Art of Exploitation
• Veracode Application Security Testing
• Halvar's IDC Vulnerability Scanner
• BinDiff binary comparison tool
• eEye's binary differencing tool
• How to run eEye's diffing tool on newer versions of IDA
• The SQLite database
• Graphviz graphing utility
• David Litchfield's Exploit variation paper
• The Metasploit opcode database
• The Wireshark Network Analyzer
• Network Exploitation Practice Range

Chapter 23

• Hex-Rays IDA Downloads Page
• The OpenRCE Download Area
• Woodmann Reverse Engineering Forums
• The Hex-Rays Decompiler
• The IdaPython Home Page
• Python Home Page
• Simple Wrapper Interface Generator
• Microsoft Visual Studio Express Freeware
• The IdaRub Ruby scripting plugin
• IdaPython Reference
• OpenRCE Reverse Engineering Articles
• The BinNavi Binary Navigator
• Spoonm's IdaRub Presentation
• The IdaSync Plugin
• The Metakit Database
• The collabREate Plugin
• The x86 Emulator Plugin
• Tennable's mIda IDL Generator Plugin

Chapter 24

• Intel x86 Reference Manuals
• Ilfak's tips on degbugger hiding
• Ilfak's stealh debugger plugin
• Ilfak's writeup in debugger scripting

Chapter 25

• The OllyDbg Debugger
• The OllyDump process dumper
• The ImpREC Import Table Reconstructor
• Hex-Rays Description of Scripting IDA's Debugger
• Nicolas Falliere's Windows Anti-Debug Reference
• Imported function names in the debugger (forum registration required)
• Hiding the IDA Debugger
• More Debugger Hiding
• Still More Debugger Hiding
• tracing exceptions (forum registration required)
• Tracing Exception Handlers
• Jan Newger's Ida Stealh debugger hiding plugin (added 03 Sep 08)

Chapter 26

• mac_server debugging on OS X (forum registration required)
• IDA Pro 4.9 Freeware Version

Appendix C

• Hex-Rays Description of IDA 5.3
• Python.org Docs on Embedding Python