Portable Execution (PE) format internals!

All this low level stuff also got me thinking about the first ever Windows worm I had to deal with when working at a previous company – The Nimda Worm (http://en.wikipedia.org/wiki/Nimda. This was the first every worm that I had captured and analysed myself – to do so needed an understanding of the Windows Portable…

0

Old skool Win32 non .Net Windows application development….

Every so often I get excited about the internals of Windows and how it works (I secretly harbour a desire to be a hard core kernel debugger!). Recently whilst watching “Defrag Tools” (https://channel9.msdn.com/Shows/Defrag-Tools/)  on Channel 9, I decided it was time to jog my memory on how we created applications before .Net came along. This little…

0