From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-104829-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1NH5xj-0001tJ-QO
	for garchives@archives.gentoo.org; Sun, 06 Dec 2009 01:30:59 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 85605E064B;
	Sun,  6 Dec 2009 01:29:52 +0000 (UTC)
Received: from inception.Mines.EDU (inception.Mines.EDU [138.67.130.4])
	by pigeon.gentoo.org (Postfix) with ESMTP id 44613E064B
	for <gentoo-user@lists.gentoo.org>; Sun,  6 Dec 2009 01:29:52 +0000 (UTC)
Received: from [138.67.69.156] (weaver-w156-ResHalls.Mines.EDU [138.67.69.156])
	(authenticated bits=0)
	by inception.Mines.EDU (8.13.1/8.13.1) with ESMTP id nB61Tpfp016391
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <gentoo-user@lists.gentoo.org>; Sat, 5 Dec 2009 18:29:51 -0700
Subject: Re: [gentoo-user] Looking for x86 or AMD64 disassembler
From: Brandon Vargo <brandon.vargo@gmail.com>
To: gentoo-user@lists.gentoo.org
In-Reply-To: <20091205193324.5337aedb@osage.osagesoftware.com>
References: <20091205193324.5337aedb@osage.osagesoftware.com>
Content-Type: text/plain; charset="UTF-8"
Date: Sat, 05 Dec 2009 18:29:50 -0700
Message-ID: <1260062990.26276.12.camel@mercury>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0
X-Mailer: Evolution 2.28.1 
Content-Transfer-Encoding: 7bit
X-Archives-Salt: 0e38339a-9bf1-47a2-8e5e-598248d93170
X-Archives-Hash: 6bd12660afec52d24a3c9d772b464e89

On Sat, 2009-12-05 at 19:33 -0500, David Relson wrote:
> I'm looking for a disassembler so that I can see the underlying
> assembly code in a variety of files, for example elf executables, DOS
> executables, binary files (such as the master boot record (MBR)), etc.
[snip]
> What do you all recommend for disassemblers?   Are there any good ones
> for Gentoo?

I've used objdump (part of binutils) in the past for looking at ELF
files; look at the -d option for disassembly. A quick test shows that it
seems to work for exe files too, but I've never used it that way as I
don't use Windows much, so I don't know for sure.

For the MBR, I don't know of any disassemblers per-se, but hex editors
work well depending on what you are doing. hexdump (part of
sys-apps/util-linux) works well. You might want to make an image of the
MBR first with dd, depending on which tool you use, as some do not
support reading from the disk directly.

Regards,

Brandon Vargo