problem about disassembling-Collection of common programming errors
Justin
.net disassembling ngen
Is it possible to disassemble / inspect the native code produced by the .Net JITer / ngen? (for purely academic purposes)In attempting to answer this question I became intrigued about what sort of optimisations the JITer would perform – rather than speculate wildly I’d really like to be able to see for myself what is really hapenning.So far I’ve:Installed a native image of my candidate assembly using ngen (is the output of this potentially different from the output of the JIT compiler?) Copied t
user978734
c gcc disassembling
I’m building interpret, writing in C and using GCC.I have changed the way I’m generating intermediate code.But unexpected change happened in interpreting this code. There is one condition block that is dealing with conditional jumps in intermediate code. I didn’t change that piece of code.Using Dissy for disassembly.Older version assember looks like:mov 0x10(%r14),%rax mov 0x50(%rsp),%rcx mov (%rcx,%rax,8),%r12 mov (%r12),%eax test $0x4,%al je 4077ef cmpb $0x0,0x8(%r12) je 4077efNewer ve
ruby_object
reverse-engineering disassembling
I’m trying to write a program analysing Windows executables. I was assuming that sections in executable file are directly mapped to memory. I have noticed strange behaviour in several programs. One example is crackme12.exe . When I check with debugger .rdata section loaded into memory I can see that for some reason 96 bytes have been added at the beginning of a section loaded into memory that was not there in the executable file. I have spent 2 days trying to read Windows executable documentatio
starblue
assembly x86 disassembling disassembler
Im currently trying to write a disassembler. I found the following list of opcodes and their meanings, so i decided to parse it at runtime: http://mprolab.teipir.gr/vivlio80X86/pentium.txtBut i am stuck at the opcode 0x00: It is followed by a reg/modbyte. Parsing it was not much of a problem for me. But i’m having trouble with the Scale-Index-Byte: If you actually specify esp as index register, it actually means that there is no index register. The same applys for the base register with ebp. But
Victor Ronin
ios reverse-engineering disassembling iphone-privateapi
I know that SpringboardService contains a lot of private API’s (as example: SBGetApplicationState, SBDimScreen etc). I got the list of these methods using “nm” tool.I want to find a tool which will let me get signatures for these private API methods. As I understand SBGetApplicationState is a C call (vs Objective C method). So I am not sure whether it’s possible to recover signatures without disassembling and additional manual actions. However, I hope that at least semi-automated process exist.S
nosedive25
cocoa string security encryption disassembling
Im making an application in cocoa and wanted to see if some strings in it were easily accessible so I ran OTX on it and sadly all of my code was found. Is there a method I can use to make my code more “secure” or at least encrypt/hide the strings? The reason I want to encrypt the string is it’s a password for a server. I don’d need it really secure I just don’t want the password to be so easy to find.Thanks for any help
Matt
RexE
.net decompiling disassembling
I came across this post on the MSMobiles.com blog that says the following, among other things:.Net is great in so many ways but forcommercial apps? No way! Anybody canjust look at your source code. A highend obfuscator will help a lot but anydetermined hacker will fix your codein less than a day. I know this fromsad experience despite spending $1000son anti-piracy and obfuscation tools.It then says the following about developing commercial Windows Mobile apps in .NET:be prepared for 1-day delay
tycoon177
java bytecode decompiling disassembling disassembly
This question already has an answer here:Is there a java classfile / bytecode editor to edit instructions?4 answersI want to be able to edit bytecode and recompile into executable class files. I have no idea how to do this. I have tried decompiling with javap -c and -v, edit something, and change it back to my Class file, but I get an error “Error: Could not find or load main class Test.class”. I would also like to generate java source from the bytecode. Any help? I want to do this myself withou
Filburt
c# runtime clr metadata disassembling
I have an application ( web-service ).I want to print some function’s hints/description of it, but NOT from the DB, textfile or other prepared context, BUT from the current web-service, which is running in live mode.I want just to copy the source code of it and then post it via web to the client for showing the real function definiton in realtime/runtime. It’s important to make him always available to look the fresh changes and for NOT depending on perviously required prepared context for hints.
Bill the Lizard
Zimm3r
c assembly disassembling
Recently I have gotten interested into dis-assembling C code (very simple C code) and followed a tutorial that used Borland C++ Compiler v 5.5 (compiles C code just fine) and everything worked. Then I decided to try my own c code and compiled them in Dev C++ (which uses gcc). Upon opening it in IDA Pro I got a surprise, the asm of gcc was really different compared to Borland’s. I expected some difference but the C code was EXTREMELY simple, so is it just that gcc doesn’t optimize as much or is i
Mark
c++ disassembling dllexport ida win32-process
Please excuse my newbie question but when I tried exporting a function in the header using __declspec(dllexport) void testfunction(double i);and declared the function in the .cpp file like thisvoid testfunction(double i) {for (int k = 0; k<10; k++) {double j = 0.1;} }I only see this for the function after disassembling the .exe file using IDA pro:.text:00401130 ; void __cdecl testfunction(double) .text:00401130 public ?testfunction@@YAXN@Z .text:00401130 ?testfunction@@YAX
Patrick
gdb disassembling
I’m trying to disassemble a program to see a syscall assembly instruction (the INT instruction, I believe) and the handler with GDB and have written a little program (see below) for it that opens and closes a file. I was able to follow the call to fopen with GDB until it executed a call. When I tried to tell GDB “disassemble 0x….” (address of call) it responded with ‘No function contains specified address.’ Is it possible to force GDB to disassemble (or display it in assembler as good as possi
Epitaph
reverse-engineering disassembling
Possible Duplicate:Find Programming Language Used So, I have an application consisting of an executable (exe) file and a DLL. Is there a way I can find out the specific language used to develop this software. I tried opening it in a disassembler but the contents seems garbled. Any ideas?
Simsons
c# .net debugging disassembling disassembly
I need to compare few function calls and signature between my application and an working application. Here I don’t mean any way to reverse engineer or access the source code of the other application , but truly need to know what are the methods , Interfaces used by the working application.I tried attaching my application to Visual Studio and then , Start>Debug , but this doesn’t provide any useful information. Any help.
Ladislav Mrnka
c# .net entity-framework-4 runtime disassembling
I’m using .NET Reflector a lot. Now I would like to “disassemble” a type which I think is created at runtime – I would like to see code of dynamic proxy generated by Entity framework 4. Is it possible somehow?
animuson
exe decompiling disassembling user32
I have a .exe which is compiled from a combination of .for (fortran), and .c source files. It does not run on anything later than Win98, due to an error with the graphics server:”access violation error in User 32.dll at Ox7e4467a9″Unless there is some other way around the above error (?), I assume I have to recompile the .exe from source using a more modern graphics server. I have all the files to do this bar one .lib file!Is it possible to pull any info on the missing lib file out of the curren
lysergic-acid
debugging windbg hacking disassembling
I would like to attach to a running process using WinDbg, and modify a certain function’s code to simply return on invocation (for educational purposes).I have used the following commands:uf dll!nameThis gives me a disassembly of the function.I have picked a specific address at a certain location and modified it to ret:ew addr c3This crashes every time, what am i doing wrong?
Alex
c debugging disassembling objdump
I’m finding it really annoying to have to disassemble large swathes of library code just to get enough context to see what is causing a crash. Is there any way that I can just hand objdump an address, and have it find the boundaries of the containing function for me? EDIT: Better yet, can I have it disassemble an entire stack trace for me?
ejang
gdb disassembling
I’m trying to learn disassembling and am practicing on Firefox using Mac OSX 10.7.5When I do:$ cd /Applications/Firefox.app/Contents/MacOS $ ./firefoxThe application starts up and everything is fine.But when I try:$ gdb firefox GNU gdb 6.3.50-20050815 (Apple version gdb-1824) (Wed Feb 6 22:51:23 UTC 2013) Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain con
Bo Persson
assembly disassembling
I have a DLL which I have disassembled, and just to test that my project is going to work. I have tried assembling it again but without luck.I’m getting different kinds of errors.The disassembly I have done with IDA Pro freeware, and then exported the file as an .asm, to try to assemble it again I have tried to use A86 assembler and flat assembler.Maybe I’m disassembling the DLL the wrong or using the wrong assembler, but could somebody maybe point me to some tools and/or resources about this?Da
Eric U.
dll comparison disassembling disassembler
I would like to compare several dlls of one install to several dlls of another install of the application I’m working with. I need to ensure they are exact same. How do I compare two dlls to ensure they have the exact same methods, properties, version, etc?I’ve started to use RedGate .Net Reflector, but the task became tedious so I thought I’d give SO a shot, see if anyone else has been in my situation before and has a quick solution.Thank you!
Web site is in building