iExploit

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Top Posters

Who's Online (1)

Powered by Vanilla. Made with Bootstrap.
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Assembly command cheat sheet
  • chroniccommand
    Posts: 1,389
    Here is a cheat sheet I made up of Assembly commands. Simple ones such as PUSH, POP etc. I will be using intel syntax.

    -------------------------------
    POP:
    pop a memory address off the stack(Remember LIFO structure).
    Usage:

    pop [memory address]

    Example:

    pop eax ; Pop the eax register off the stack

    --------------------------------
    PUSH:
    Push a memory address into the stack
    Usage:

    push [memory address]

    Example:

    push ebp ; Push ebp onto stack

    --------------------------------
    MOV:
    Move memory addresses
    Usage:

    mov [memory address], [memory address]

    Example:

    mov esi,0x400e74 ; Move 0x400e74 into the value of esi

    --------------------------------
    JMP:
    Set the EIP to a memory address
    Usage:

    jmp [memory address]

    Example:

    jmp eax ; Set EIP to current eax register

    --------------------------------
    CMP:
    Compare memory addresses
    Usage:

    cmp [memory address], [memory address]

    Example:

    cmp eax, esp ; Compare eax register and esp register

    --------------------------------
    ADD:
    Add source to destination
    Usage:

    add [destination], [source]

    Example:

    add esx, ebx ; Add ebx into esx

    --------------------------------
    INC:
    Increment by one
    Usage:

    inc [memory address]

    Example:

    inc ebx ; Increment ebx by one

    --------------------------------
    Registers(basic ones. 32 bit):

    eip
    esp
    eax
    edx
    ecx
    edx
    ebx
    esi
    ebp
  • Xin
    Posts: 3,251
    Nice :) really useful, although remember the stack is LIFO not FILO ;)
    Xin
  • chroniccommand
    Posts: 1,389
    said:


    Nice :) really useful, although remember the stack is LIFO not FILO ;)



    GAH I would screw that up. I need to start going to bed earlier :p
  • Sh3llc0d3
    Posts: 1,910
    I hate intel syntax. Too used to coding on *nix.

    You could also include other jumps (JNE etc) and DEC ;)
  • DeadLine
    Posts: 7
    What about the other Basic reversing ones?

    [list]
    [*] INC[/*:m]
    [*] DEC[/*:m]
    [*] JE[/*:m]
    [*] XOR[/*:m]
    [*] More...[/*:m][/list:u][hr]
  • Sh3llc0d3
    Posts: 1,910
    Congrats on spotting that DeadLine lol, XOR, JNE JE JNZ INC DEC I would say are the main ones that need including.
  • DeadLine
    Posts: 7
    lol yah well those are some VERY basic others to spot functions llike
    [list]
    [*] RETN (Returns a value, commenly used in functions)[/*:m]
    [*] MUL (Multiplys numbers, commenly used in keygens)[/*:m]
    [*] DIV (Divides numbers , commenly used in keygens)[/*:m]
    [*] LEA (Loads affective address's, found in everything)[/*:m]
    [*] I can go on forever lol..[/*:m][/list:u]
  • Sh3llc0d3
    Posts: 1,910
    lol... cheat sheet or ASM dictionary lol
  • DeadLine
    Posts: 7
    You can never be to safe :/
  • LiquidFusi0n
    Posts: 10
    I would also suggest including SETE as a command that crops up a bit.
Add a Comment