Menu
Note: A similar question is also on Reverse Engineering Stack Exchange.
Is there any free AMD64 disassembler?
It seems like there are a lot of x86 disassemblers, but they can't open 64-bit files...
Are there any tools that can show exported symbols in the disassembly as well? It's a little hard to figure out the code when the exports aren't identified. (I don't need debug symbols, just exports.)
954
A decompiler takes one from a binary to source code–or something similarly high-level that can easily be read by humans. A disassembler takes one from binary to assembler–which is much lower level and is more difficult to read for humans.
A disassembler is a computer program that translates machine language into assembly language—the inverse operation to that of an assembler. A disassembler differs from a decompiler, which targets a high-level language rather than an assembly language.
I use objdump -d. :-) Does that not work for you?
114
If you're working with Windows files and have Visual Studio, you can use the dumpbin tool.
dumpbin /disasm ntoskrnl.exe /out:ntoskrnl.asm It won't display exports inline either, but you can see them separately with the /exports switch. Then you can make a little script to parse the exports and replace the addresses in the assembly listing with names.
41
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
