Software analysis technology
Introduction to the first assembly language
I am placed on Kobe's compilation tutorial, the content is simple, I want to have a certain development in the crack, it is best to buy a bunch of books to learn. Nowadays, students have learned, I have learned a netizen to say that I have learned compilation, it is 8088, etc., I can't use it. I will tell you now, enough, current hardware is compatible with X86 system, understand ? More complex programs, eventually need x86 instructions, you can track it, see all assembly code. You don't need much level, as long as you can understand it, you can understand that you can see the first two chapters, understand the meaning of the various instructions, understand the register, data in memory storage order. But if you want to have something, it is still spent on the compilation.
Attached: Kobe assembly tutorial (for reference only)
Kobe assembly tutorial (1)
Super Hit is good! The National Day military parade is really cool, and it is true that China's Cracker feels good. . . Come on come on me. . . In the process of CRACK, everyone (initiator) must feel that the skill is not enough. Everyone can easily find the article of Many Crackers Write, with continent (like our), and Taiwan (YHQ, Yu Huang male). But there are very few compilation messages, maybe others are too lazy to write. I am very lazy, but I can't bear to see the beginning of the meal. (Like I am everywhere). Yes is there. . . . . . . .
(1) Assembly command, the Book we assembled here is 8086, 8088 instructions, but the problem is not big. . . . . Love is a word, I just say it. . . . . . Listen Carefully:
MOV doesn't have to say more ESP: MOV AX, CX MOV BX, AX
Push push (Stack) ESP: Push AX
POP outlet ESP: POP CX
XCHG exchange ESP: XCHG AX, BX
IN, OUT related to Port with Port / Out
XLAT table
The offset in the LEA segment. ESP: Lea Ax, Area1 = MOV AX, Offset Area1
Lahf, sahf related register AH related to chess
Pushf, POPF will be marked in / out of the stack
Add ESP Add Ax, CX (AX = AX CX)
ADD Add to Chess Caller C
INC ESP INC AX (AX = AX 1)
AAA addition correction
SUB, SBB subtraction
Dec ESP: DEC AX (AX = AX-1)
NEG to make up,
CMP ESP: CMP AX, CX will send FLAG C A, S, etc. of AX-CX.
Usually used with JNZ, JZ.
Mul, imul
Div, IDIV
SHR, SAR, SHL arithmetic, logic displacement r = Right L = Left
OR, XOR, AND logic ESP: XOR AX, AX (AX = 0)
(Endlessly)
I don't know if I understand, I will post more in the future. Next time I may go back to Post Debug's use, or Softice, how can't I ask. Oh, forget it. . . . This document is welcome to transfer. laugh. . . . .
Kobe's teaching file (2)
Mathematical gear of the register lecture kobe (2)
Super Hits is good, and I want to have a few colds in the next, but I'm more than the Time, or I will hurry on a few articles to strengthen the Blacksmith's chinacker.咦, XXX is a lap, is it a circle? What did you eat? What, Intel ProsesSor, no wonder ....... No, no, don't walk, then cut into the topic.
(2) The difference between 80386, 80486 and 8086, 8088 is not a bit, but okay, no linear algebra teacher runs far.
Not we are familiar with the 8086, 8088 register
(1) General registers: AX, BX, CX, DX, Si, Di, SP, and SP. Of course, a register has its own special purpose, such as: CX as a note; AX is very common, especially when calling interrupt .
(2) Standard flag: a, c, s, o ... too much (rest)
(3) Register: CS, SS, DS, ES 80386, 80486, EXTEND is EXTEND, ESX ..., but also added system address register GDTR. .... Debug Register DR0 ... (speaking to the DR0 CIH virus) Use this register to set the infection mark! ..... I've been running). There is also a control register CR0 ... test register TR6 ......
The most preferred mode, protection mode, and virtual 86 mode of learning CRACK will find the register. Due to the progress of the computer AX (16) ----> EAX (32-bit) many corresponding calculations have changed.
