tag:blogger.com,1999:blog-14114712.post7684828242901105463..comments2024-03-03T02:04:07.138-08:00Comments on ADD / XOR / ROL: Diffing x86 vs ARM codehalvar.flakehttp://www.blogger.com/profile/12486016980670992738noreply@blogger.comBlogger5125tag:blogger.com,1999:blog-14114712.post-29246798562912764542009-03-09T01:56:00.000-07:002009-03-09T01:56:00.000-07:00I have to attest that it works extremely well! I j...I have to attest that it works extremely well! I just BinDiffed iPhone binaries against OSX 10.5.6 binaries with extremely pleasant results ;)RPWhttps://www.blogger.com/profile/10934866360986086481noreply@blogger.comtag:blogger.com,1999:blog-14114712.post-78278972632036724072009-03-06T06:42:00.000-08:002009-03-06T06:42:00.000-08:00Halvar,This is unbelievably cool. Kudos on the wo...Halvar,<BR/><BR/>This is unbelievably cool. Kudos on the work, and now I'm saving up to buy BinDiff.<BR/><BR/>-NateNate McFetershttps://www.blogger.com/profile/12918192846763867075noreply@blogger.comtag:blogger.com,1999:blog-14114712.post-5286698777699636002009-03-05T11:02:00.000-08:002009-03-05T11:02:00.000-08:00Explanation of what I meant with symbol porting:Yo...Explanation of what I meant with symbol porting:<BR/><BR/>You have an executable without symbols. You know it contains statically linked code that is also present in another executable for which you do have symbols. It would be great if you could "port" this information into the executable for which you don't have symbols.<BR/><BR/>Example use case: You take apart a piece of software and you see that it uses OpenSSL's crypto functions. You compile OpenSSL with symbols, diff it against the executable that you have, and "pull" the symbols from OpenSSL into your current disassembly.halvar.flakehttps://www.blogger.com/profile/12486016980670992738noreply@blogger.comtag:blogger.com,1999:blog-14114712.post-63258358800504740702009-03-05T10:23:00.000-08:002009-03-05T10:23:00.000-08:00I haven't found where you commented about "I menti...I haven't found where you commented about "I mentioned in my last post on the topic that DiffDeluxe was designed to facilitate symbol porting". Can you explain what does mean "symbol porting"? Thanks.Fungos Bauuxhttps://www.blogger.com/profile/04891834536925023851noreply@blogger.comtag:blogger.com,1999:blog-14114712.post-78995123724169828022009-03-05T02:03:00.000-08:002009-03-05T02:03:00.000-08:00Quite impressive!Nice work.Quite impressive!<BR/>Nice work.Nico Waismanhttps://www.blogger.com/profile/17467268863787048478noreply@blogger.com