Stack Overflow
Stack Overflow

Questions tagged [disassembly]

Involves turning "compiled" code (such as machine code, byte code or IR code) back in higher-level assembly mnemonics.

Disassembly is the process for turning a binary form back into its higher-level counterpart so that it can be inspected or altered in a human-readable form.

This is normally done with the aid of a disassembler, some notable examples being:

1640 questions
0
votes
2 answers

Assembly instruction address

Why every time when I disassembly the same .exe file the same instruction is in the same address? And what address is that(RAM? HDD? Virtual?)?
Narek
  • 38,779
  • 79
  • 233
  • 389
0
votes
1 answer

How to Extract the Resouce Content From MSIL OR .NET PE Files

Please check the Image link, i need to extract the resource content from the MSIL file. I have debugged the file using ILSpy but i need to do it in any other way. with out using any manual intereption. https://i.stack.imgur.com/ZQdRc.png
Peter John
  • 47
  • 6
0
votes
1 answer

How to change the assemblyIdentity of an executable?

I want to hide the tool I used to create an .exe file. I am not doing anything illegal, I just want to protect my intellectual property from being copied. If I open the exe file in a text editor I see the following section.
David
  • 4,786
  • 11
  • 52
  • 80
0
votes
1 answer

When disassembling a DSP program, how to know whether the 32-bit data is an instruction or not?

I loaded a program using Code Composer Studio 3.3, and through the diassembly window we can see something like this: 00000C5C 00000000 NOP 00000C60 DD7ABCD2 .word 0xdd7abcd2 The first column means PC, the…
user4082317
  • 11
  • 2
0
votes
1 answer

What bits of memory are moved into an 8 bit register?

Say we have a base address (in this instance: esi+ecx), and we point to it to store some 16 bit piece of information and then we do this: mov bl, byte [ds:esi+ecx] Are moving the first 8 bits of that memory into that 8 bit register?
user3214982
0
votes
2 answers

Dumped i386 assembly code and recompile as PPC?

I used the Apple built-in "otool" command with "-Vvtd" switches to dump a Mach-O i386 binary, redirected to a .s file. I have tried unsuccessfully to use nasm and GAS assemblers to recompile the code on a PPC machine ("as"-binary in the i386…
BigSum
  • 61
  • 7
0
votes
0 answers

Disassemble Memory

I want to disassemble part of a program directly in memory. I am interested how generated code looks like when I investigate the stack and check how and where a certain routine was loaded and how it is bind and invoked. Is there a ready to use…
Martin Kersten
  • 5,127
  • 8
  • 46
  • 77
0
votes
1 answer

Rewriting string in .NET CLR heaps using dnlib

I need to rewrite strings in #US heap in .NET file. I decided to use dnlib that looks like a powerful library to manipulate .NET files. It is underdocumented unfortunately. I load the file the usual way. The ModuleDefMD Load() methods seem to be the…
MazeGen
  • 180
  • 3
  • 14
0
votes
1 answer

MOVZX x86 encoding

Looking at some disassembly, I see the following line: 0f b7 8c 00 c4 99 86 movzx ecx,WORD PTR [eax+eax*1-0x3e79663c] How is the disassembler is getting the value "0x3e79663c" from that encoding? It does not appear to be relative to the address…
Stephen
  • 4,176
  • 2
  • 24
  • 29
0
votes
1 answer

How to declare and load multiple array values into RAM with ARM assembly?

I want to create an array in memory like I would in C with int i[] = {0,2,3,124,324,23,3,2} How to do this in ARM assembly? Apparently I could declare some values like this: AREA mydata, DATA array DCD 0,2,3,124,324,23,3,2 But how to copy…
JohnnyFromBF
  • 9,873
  • 10
  • 45
  • 59
0
votes
1 answer

`std::vector` iterators generate huge assembly code

Before I begin I want to say I'm using Visual Studio 2013 Express Update 4 and compiling with optimization on (/O2 and /Ot). I was making a test with vector iterators like this: #include #include using namespace std; int…
LHLaurini
  • 1,737
  • 17
  • 31
0
votes
1 answer

How to compile objdump for the m32c architecture

I would like to use objdump to view binary m32c files. When I type in: objdump -i the architecture list returned is i386 based. Looking at the source code from binutils it appears that the m32c architecture is supported, just not compiled in by…
b1tflpr
  • 33
  • 5
0
votes
1 answer

Is python sys.stderr.write atomic? How to determine thread safety of builtin functions?

I'm trying to understand atomicity of this command with import dis import sys dis.dis(sys.stderr.write) However, I get "TypeError: don't know how to disassemble builtin_function_or_method objects" How to determine atomicity of python built-in…
124bit
  • 496
  • 1
  • 3
  • 13
0
votes
1 answer

Need to compare C# source code with dlls

We were using a product from a vendor provided to us in form of dll's. Now we are taking over that vendor product's source code. Our core application is dependent on those vendor provided dll's. We want to make sure that the source code that is…
user2835173
  • 1
0
votes
0 answers

Assembly Binary Bomb Phase 4

This question comes from a very popular assignment to teach assembly and the use of the GNU debugger. I am currently on phase 4 and here is the disassembled code: Dump of assembler code for function phase_4: 0x08048f52 <+0>: push …
SciGuy
  • 59
  • 1
  • 6
1 2 3
99 100