1. Possess basic programming skills, such as c, c++, c, c++ are very basic languages, not required to be proficient, but they must be able to write, there is no problem in writing a small tool, and at the same time, they must be familiar with c++ classes, inheritance, and virtual tables I am very familiar with virtual functions and so on. Many games are developed in C++, and they are relatively large. Only by mastering the basics can we better understand the code from the assembly layer. Many times we have no problem at all when we look at a single assembly instruction, but once combined It will be completely incomprehensible when you look up. You must master the assembly language implementation corresponding to the high-level language, such as the working principle of the function, several calling conventions, parameter passing methods, and return values. There are a lot of information on the Internet in this regard. It is best to understand python. As a scripting language, python can be used to develop plug-ins for many reverse debugging tools, which can save us a lot of physical work.
2. Have a good understanding of windows system knowledge , because plug-ins will design a lot of windows system knowledge, so you must have a certain grasp of the bottom layer of windows, such as windows api, as well as commonly used injection, hook technology and exception handling mechanism of windows system Wait, you can go to the Guanghai Forum to learn the equivalent knowledge of key wizards, acceleration gears, and injections commonly used in plug-ins. For books, you can refer to "Windows Core Programming". The more you know about the underlying knowledge, the easier it is to analyze the plug-in technology.
3. Proficiency in the use of reverse analysis tools. We usually face binary executable programs in our work. To do plug-ins, we first analyze the target program. Therefore, we must be proficient in the commonly used debugging tools windbg, ollydbg, and static analysis tool ida use. There are also many online tutorials, you can use the relevant crackme on the Kanxue Forum to practice and learn.
4. Master the principles and skills of the shell, familiar with common encryption and decryption algorithms, anti-debugging skills, we often encounter many packers when analyzing programs, so we must be familiar with the principles and basic knowledge of the shell, and master the same At the same time, you must be familiar with various anti-debugging techniques. When analyzing programs, you will generally encounter many encryption and decryption algorithms, so you must have a certain ability to quickly identify the characteristics of various encryption and decryption algorithms. It can help us analyze the core functions of the target program faster. In this regard, you can refer to the book "Encryption and Decryption", which is very good and detailed.
The above is the basic learning idea. Both reverse engineering and cheating involve more knowledge, and there will be more things to learn, and the cycle will be longer. But believe in a word, as long as you work hard, you will gain something. Other aspects such as network The knowledge also needs to be learned, I hope these can help the host, we learn reverse cheating technology, the purpose is to remove more kinds of cheating, to serve our game lovers better, not to use these technologies to destroy the fairness of the game.
Network security learning resource sharing:
Zero-based entry
For students who have never been exposed to network security, we have prepared a detailed learning and growth roadmap for you. It can be said that it is the most scientific and systematic learning route, and it is no problem for everyone to follow this general direction.
At the same time, there are supporting videos for each section corresponding to the growth route:
Due to the limited space, only part of the information is shown, you need to click the link above to get it