“Assembly Language”, 3rd Edition by Wang ShuangChapter 9: Principles of Transfer Instructions, Checkpoint 9.2 (Page 184) Complete the programming task using the jcxz instruction to find the first byte with a value of 0 in the memory segment starting at 2000H. Once found, store its offset address in dx. assume cs:codecode segment start: mov ax, … Read more
PrefaceSummer time Establishing a daily learning and note-sharing chapter, here I mainly share some notes I wrote during my learning process. Then I share it with everyone to help with learning. The content of this chapter is not limited to evasion, malicious development, reverse engineering, etc. At the same time, please do not use the … Read more
1. Basics of Machine Language Composition of Machine Instructions Machine instructions are binary codes that the CPU can execute directly, consisting of two parts: Opcode: Specifies the operation to be performed (such as addition, subtraction, transfer, etc.) Operand: Specifies the target of the operation and the location for storing the result (registers, memory addresses, etc.) … Read more
IntroductionSummer time This is a daily learning and note-sharing chapter, where I mainly share some notes I wrote during my learning process. I hope to help everyone learn. The content of this chapter is not limited to evasion techniques, malicious development, reverse engineering, etc. Please note that do not use the knowledge gained for illegal … Read more
The Root of the Dilemma in Understanding Assembly Language For programmers who are “native” in C/C++, reading assembly code often encounters the following difficulties: Poor Readability: Assembly instructions have a low level of abstraction and lack the expressiveness of high-level languages. Lack of Context: Low-level details such as register operations and memory accesses obscure the … Read more
0x00 This chapter is dedicated to daily learning and note sharing to help everyone learn assembly language. Why learn assembly language? Because in red-blue confrontations, our tools are often detected and eliminated due to the presence of AV/EDR. Therefore, we need to counter AV, which involves evasion techniques. To learn evasion techniques, we must start … Read more
Implicit Behaviors of Storage Model Pseudoinstructions <span>.MODEL</span> pseudoinstructions not only define the storage model of the program but also automatically execute several important low-level settings. These implicit actions greatly simplify the writing of assembly language programs. Core Implicit Actions **Automatic Creation of Segment Group (DGROUP)**: Combines <span>_DATA</span>, <span>CONST</span>, <span>_BSS</span>, and <span>STACK</span> into a segment group … Read more
Overview of Macro Operators In assembly language macro processing, special operators provide fine control over macro parameter handling, making macro definitions more flexible and powerful. These operators are processed by the assembler during the macro expansion phase and do not affect the final generated code. Detailed Explanation of Five Special Macro Operators 1. Forced Replacement … Read more
0x00 This article is dedicated to daily learning and note sharing to help everyone learn assembly language. Why learn assembly language? Because in red-blue confrontations, our tools are often detected and killed by some AV/EDR. Therefore, we need to counter AV, which is the evasion technique. To learn evasion techniques, we must start from the … Read more
