direwolf314
commented
10 years ago - For each string, convert the single-byte dictated version into a string declaration. For example, multiple lines of single bytes would be replaced with: string_name db 'string_contents',0 .
- Identify jump tables/pointers by taking a sliding window on unidentified bytes and checking if they point to known data. a. Requires knowledge of endianness and word size b. If it points to either code or data - make that point a "Location". See comment on #14 i. Example: dd offset loc_401813