Questions tagged [assembly]
A family of very low-level programming languages, just above machine code, where each statement corresponds to a single machine code instruction.
842 questions
0
votes
0
answers
10
views
Immobilizer Logic of Specific ECU
I am working on a project . Its Suzuki Wagon R 2010 ECU of 33910-82kf Part no
This ecu Immobilizer works on CAN System ECU (Chellanger) BCM (Responser)
Ecu send 8 bytes message on 0xD1 CAN ID and BCM ...
0
votes
1
answer
171
views
Code injection to system process(lsass.exe)
I allocated an RWX (PAGE_EXECUTE_READWRITE) memory region inside LSASS.exe (i tried a RX codecave), then wrote my shellcode there.
After that, I tried to execute my shellcode via NtQueueApcThread → ...
- 1
0
votes
0
answers
107
views
Help Needed with extracting Image Data from DOS Games Query
I need help with Extracting Aircraft Sprites, from some WW2 DOS Games. A code in C Program Language
was written for me, a while ago and it extracts the Bitmap Images that makeup various .PAC Files in ...
- 89
0
votes
0
answers
49
views
RE mechanism of an indoors cat deterrent spray motion device
I am trying to build a cat deterrent device similar to this one, and after successful validation I'll happily share the design (3D cad), blueprints and micro-controller code as open hardware/software.
...
- 101
0
votes
0
answers
38
views
How could a CRC-15 CAN be transformed into 8 bytes in an embedded system?
I am analyzing calibration binary files of an embedded system (BMS) that likely uses a CRC-15 CAN checksum.
From my firmware and bootloader file analysis, I have found a PECLookup table, which ...
- 1
0
votes
0
answers
60
views
Analyze assembly code in detail
This function is called much times. I wanna know the role and usage of this code in detail. Plz help me.
0
votes
0
answers
30
views
Optimize VAX instruction with IDA microcode
I learning microcode, and i tried to use microavx plugin, it always catch Internal ERROR 50757
I also try to code a small plugin, but got same error when run emit() function
import ida_ua
import ...
0
votes
0
answers
107
views
Is it okay to reverse engineer a game?
I’m in game development, and recently got intrigued by reverse engineering. I would really like to reverse engineer a game and learn something from it, but that’s definitely illegal. How can I learn ...
- 1
1
vote
2
answers
110
views
What is CARRY2 in Ghidra?
I decompiled a 16-bit Windows 3.1 program with Ghidra 11.0.3 and part of it looks like this:
if ((uVar6 = local_8 + local_a + 0xa46b, uVar6 + local_10 == -0xded &&
((uint)CARRY2(local_8,...
- 111
0
votes
0
answers
24
views
Tracking where an DITL resource is called within a 68k program
Okay, so I'm a super noob at reverse-engineering and know next to nothing about 68k assembly code. I'm running an emulated version of MacOS 9.0.4, using a program called Resorcerer 2.4.1 to examine my ...
- 1
0
votes
1
answer
63
views
Help with FISTP and FILD interpretation
I need some help with understanding what is being actualy done in those two assembly lines:
fistp qword ptr [esp+10h]
ss:0023:0013be80=0000000000001cf8
fild qword ptr [esp+10h]
ss:0023:0013be80=...
- 55
0
votes
0
answers
39
views
Understanding emulation & tracking IP within a process
I'm working on an end-of-year project for my studies and I was thinking of writing some sort of process emulation debugging tool. What I mean by this is, I want to write a debugger without actually ...
0
votes
1
answer
59
views
Strange SBB behaviour
I have a code in which I have:
EAX=00002c36
and after:
SBB eax, 0
the eax turns:
EAX=00002c35
Is that possible?
Shouldn't eax be the same value?
If it's correct, it seems like I don't really ...
- 55
0
votes
1
answer
161
views
C# reverse engineering bypass obfuscation
I have to extract a flag from a test.exe file. The respective flag is run as an argument for the test.exe file => "test.exe FlagName" and in this way I will reach the next flag.
I managed ...
0
votes
1
answer
72
views
imul instruction with three operands
I want to use a imul instruction with 3 operands. Is the destination operand the first or last? I searched the web and got contradictory informations.
- 55