Hi,

I am trying to reverse a simple hash function, it would help greatly if I could dump my backtrace to a file as unassembled instructions. Is there anyway to do this?

Thanks

JH

Hi,

What do you mean unassembled??? You mean disassembled? you can try closing the code window with "wc" command in sice then press keep pressing F8 starting from beginning of hash function till the end of it... then you can close sice and open Symbol Loader, save sice log history to a text file and you will have it there ...

cheers
crUsAdEr

Hiya JH1234,

Hehe, an age old question you ask, my friend... And one of the most lamentable oversights in functionality the Numega team ever made regarding our beloved degugger

Well you can use icedump to make a manual dump... Instructions are stored in the backtrace buffer in a 7 byte format consisting of address (4 bytes), code segment selector (2 bytes), and ring (1 byte). Use the search command to locate the buffer using the first address from your trace, multiply the total # of instructions logged by 7 bytes and that will be your dump size.

Alternately, you could try out the backtrace dumper utility Kayaker and I worked on... Its still in a beta stage and has never been publicly released, but it does work decently well in most cases. I would suggest you mail Kayaker about it as I haven't worked on it in quite some time due to some really disappointing issues with my AMD processor regarding the SI backtrace feature. I'm certain he has the most up to date copy of our code and will probably send you a copy if you ask nicely LOL, no complaints if it crashes though, cause you'd be getting a beta

Cheers,
Clandestiny

I most confess that i am one of the ungrateful beta testers of the trace dump pack, and I never properly expressed my appreciation for your (Kayaker and Clandestiny) efforts.

The utility has worked seamlessly, and served me well, Lord Vather, as long as I stayed in the Win9x realm. Newer editions of Windose and Sice lack such a handy contraption.

WHY I'd like to ask?