1. Key operation in DTDebug F2 to set a breakpoint
F7 to step in (use the call command) F8 to step in a single step , the right column is equivalent to int 3
2. Function: a collection of a series of instructions, mainly to reuse specific functions
such as assigning values to registers, or executing two-number addition and subtraction instructions, etc.
3. How to pass in ten parameters?
There are a total of eight general-purpose registers. At this time, the general-purpose registers can no longer be used. The parameters can be pushed into the stack through the stack. 4.
Stack balance
I understand that a function is used. After the ret instruction is executed, the stack top What esp was originally, it should be what it is now. Of course, if the ebp at the bottom of the stack is also changed, let it be changed back.
The following is the actual operation.
After execution,
you can see that the value of eax is 4, and the value address of esp has not changed.