Chapter 8 - Real DLL

Finally going to take on something real.
ntlywxb · Feb 12, 2020 · 02f4728 · 02f4728
1 parent 0023b62
commit 02f4728
Show file tree

Hide file tree

Showing 5 changed files with 16 additions and 3 deletions.
diff --git a/Chapter 3 - Assembly/3.1 Registers.md b/Chapter 3 - Assembly/3.1 Registers.md
@@ -70,8 +70,6 @@ Different data types can't be put in just any register. Floating point values ar
 
 A nice table of these registers, and more information about them, can be found here: https://en.wikipedia.org/wiki/Advanced_Vector_Extensions
 
-> Thank you to [Seelengrab](https://github.com/Seelengrab) for [the resource](https://en.wikipedia.org/wiki/Advanced_Vector_Extensions) and information about these registers.
-
 ### Extra Registers
 There are additional registers that should be mentioned. These registers don't have any special uses. There are registers **r8 to r15** which are designed to be used by integer type values (not floats or doubles). The lower 4 bytes (32 bits), 2 bytes (16 bits), and 8 bits (1 byte) can all be accessed. These can be accessed by appending the letter "d", "w", or "b".  
 Examples: 
@@ -84,3 +82,5 @@ Examples:
 [Next Lesson ->](3.2%20MemoryLayout.md)  
 
 [Chapter Home](3.0%20Assembly.md)  
+
+> Thank you to [Seelengrab](https://github.com/Seelengrab) for [the resources](https://en.wikipedia.org/wiki/Advanced_Vector_Extensions) and information about the floating point registers.
diff --git a/Chapter 6 - DLL/6.10 FinalNotes.md b/Chapter 6 - DLL/6.10 FinalNotes.md
@@ -1,6 +1,7 @@
 # 6.10 Final Notes
+I would consider this to be our first real reversing project. There was a significant amount of information covered. If you're confused by anything please reach out on [Twitter](https://twitter.com/0xZ0F). There are no dumb questions! You should be able to DM me, if not just tweet at me asking to DM. I encourage you to write your own programs and reverse them. That's by far the best way to learn this stuff.
 
-I would consider this to be our first real reversing project. There was a significant amount of information covered. If you're confused by anything please reach out on [Twitter](https://twitter.com/0xZ0F). There are no dumb questions! You should be able to DM me, if not just tweet at me asking to DM. I encourage you to write your own programs and reverse them. That's by far the best way to learn this stuff. We will now be moving on to reversing executables. If you haven't already, take a break!
+Next up we'll talk about the Windows OS. It's not going to be as fun, but it's just as important if you're going to be reversing software that runs on Windows.
 
 [<- Previous Lesson](6.09%20ImplementingPlayer.md)  
 [Next Lesson ->](../Chapter%207%20-%20Windows/7.0%20Windows.md)  

diff --git a/Chapter 7 - Windows/7.WIP Memory Manger.md → Chapter 7 - Windows/7.WIP MemoryManger.md b/Chapter 7 - Windows/7.WIP Memory Manger.md → Chapter 7 - Windows/7.WIP MemoryManger.md
diff --git a/Chapter 8 - Real DLL/8.00 RealDLL.md b/Chapter 8 - Real DLL/8.00 RealDLL.md
@@ -0,0 +1,10 @@
+# Chapter 8 - Real DLL
+This chapter is going to cover reversing parts of a real DLL. The DLL covered is going to be NTDLL.dll, specifically the Generic Table (GT) functions. I'm choosing the generic table functions because they are semi-documented (so we can check our work), there are multiple functions, and they cover a variety of concepts.
+
+* ### [Chapter 8 - Real DLL](8.00%20RealDLL.md)
+    * [8.00 - Real DLL.md](8.00%20RealDLL.md)
+
+[<- Previous Lesson]() - WIP  
+[Next Lesson ->]() - WIP  
+
+[Chapter Home](8.00%20RealDLL.md)  
diff --git a/_DOC/TODO.md b/_DOC/TODO.md
@@ -1,3 +1,5 @@
+Real Windows DLL examples.
+
 ## Chapter 3 - Assembly
 **Give more and better asm + C examples**
 rep movs(b/w/d)