Highest Voted 'objdump' Questions

0

votes

0 answers

Extract opcodes from the entry point of an executable

I am working with the objdump command to decompile an executable and extract the opcodes, I need to know if I can extract the opcodes from the entry point of the file, because now I do it from the sections.

asked Mar 16 '18 at 13:54

Stone

101
5

0

votes

1 answer

Specify Section name in Objdump

I am working on disassembling PE files to assembly using Objdump. Using this command: objdump -M intel -d File.exe The Output is: 00401000 <___mingw_CRTStartup>: 401000: 53 push ebx 401001: 83 ec 38 …

assembly portable-executable objdump

asked Feb 28 '18 at 12:23

M Haris Khan

55
9

0

votes

1 answer

How to understand the disassemble code output from gdb

Look at the following output from gdb, why does the instruction code is disordered? It shows: 0xffffffff81107714 <+7>: mov %rdi,%rbx then shows 0xffffffff8110770f <+2>: cmpq $0x0,0x10(%rdi) . (gdb) disassemble /m __d_rehash Dump of…

crash gdb kernel objdump

asked Dec 13 '17 at 06:00

river

694
6
22

0

votes

2 answers

arm - how to check endianness of an object file

Using objdump, how do you check if an .obj is little- or big-endian?

windows arm objdump object-files

asked Nov 27 '17 at 21:24

Bob

4,576
7
39
107

0

votes

1 answer

Discard unused symbos from dlopen()'ed .so

I have a set of shared libraries (Intel MKL) that are only distributed in binary form. A top-level "runtime" library, libmkl_rt.so, links against my executable and is visible with ldd: ... libmkl_rt.so => /var/task/lib/libmkl_rt.so…

reverse-engineering dlopen objdump objcopy sprof

asked Nov 10 '17 at 07:37

thinkski

1,306
1
15
25

0

votes

1 answer

I don't understand meaning of this: +"a function to be evaluated during reloc processing"

I don't understand meaning of this: +"a function to be evaluated during reloc processing" - it is from flags of objdump. How function can be evaluated during reloc processing? Is it sequence of cpu opcodes (subrotinue) that must be called? Or what?

flags objdump relocation nm

asked Sep 18 '17 at 14:02

rcm

1
4

0

votes

0 answers

how to xor a portion of code with objdump

I want to xor a portion of code for a static analyse of a 32 bits elf executable. I know the start and ending address, i know the xor key. I tried to dump memory block with objdump and pipe it to a python script which make the xor. But i am…

x86 reverse-engineering objdump

asked Aug 15 '17 at 18:46

Bob5421

7,757
14
81
175

0

votes

1 answer

Can I display disassembly code along with symbols from the .bss section only?

I'd like avr-objdump to show the disassembled code from an avr-elf binary file and also include symbols but only those from the .bss section, like this: SYMBOL TABLE: 00800100 l d .bss 00000000 .bss 00800102 u O .bss 00000001…

avr-gcc objdump

asked Aug 10 '17 at 13:39

user4113344

0

votes

0 answers

Objdump bug (?) when disassembling a large ARM file

I'm trying to disassemble libnickel.so found on my kobo (~12Mb) with arm-linux-gnueabi-objdump on a linux machine. The file format is correctly detected as elf32-littlearm, and all opcodes are 32-bit as expected for ARM; but suddenly output aspect…

arm objdump

asked Aug 01 '17 at 16:04

giuliolunati

766
5
14

0

votes

0 answers

ELF tool to dump function addresses alongside their symbols

I've recently come across an issue with objdump where instead of printing the function's symbol as a label, it repeats the first instruction over and over a few times. ca719c: 009501b4 ; instruction: 0x009501b4 ca71a0:…

linux elf objdump

asked Aug 01 '17 at 08:04

user8398347

33
4

0

votes

3 answers

accesing static variables that declared inside functions

I want to know why we cant access variables those declared inside functions from outside the function? Its technically possible to access them since they put in .data segment just like global/static variables. Also what is the difference between a…

c gcc assembly objdump

asked May 01 '17 at 13:23

Ali Atıl

121
7

0

votes

0 answers

Objdump: What does the comment mean?

I'm trying to write a small os kernel and got an General Protection Fault at runtime. By logging the qemu output, I figured out, that the following assembly is responsible: 10592e: 48 c7 05 a7 5c 02 00 movq $0x12b5a0,0x25ca7(%rip) # 12b5e0…

assembly objdump

asked Apr 22 '17 at 22:38

jagemue

363
4
16

0

votes

1 answer

Prevent objdump from truncating hex output

Using objdump -dF or just objdump -d, I experience that objdump truncates output: 0000000000400561 <.wm_split0> (File Offset: 0x561): 400561: 01 00 add %eax,(%rax) ... 0000000000400565 <.end_0> (File Offset:…

linux binary gnu objdump

asked Apr 21 '17 at 13:56

Shuzheng

11,288
20
88
186

0

votes

1 answer

Can't find the Symbol Table(Elf format) (C programming)

I'm actually recoding the nm and objdump program. I've already finished objdump and it works well, so i'm working on nm now. I'm trying to find the Symbol table, in order to do that i run through the Section header table like this : while (i <…

c elf objdump nm

asked Feb 25 '17 at 15:25

drumz

65
7

0

votes

0 answers

objdump result not consistent? It shows different required libraries depending on how it's executed

It seems it's a not reliable behavior. If I compile thrift c_glib library and show requirement of the libraries I found: thrift/lib/c_glib$ objdump -p .libs/libthrift_c_glib.so | grep NEED NEEDED libgobject-2.0.so NEEDED …

android c libtool objdump

asked Feb 22 '17 at 09:39

Gonzalo Aguilar Delgado

651
5
11

Questions tagged [objdump]