Obtaining information about executable code from exe/pdb

Posted by Miro Kropacek on Stack Overflow See other posts from Stack Overflow or by Miro Kropacek
Published on 2009-06-09T14:39:15Z Indexed on 2010/03/15 23:09 UTC
Read the original article Hit count: 472

Filed under:

pdb

|

segments

|

instructions

Hello,

I need to extract code (but not data!) from classic win32 exe/dll files. It's clear I can't do this only with extraction of code segment content (because code segment contains also the data -- jump tables for example) and that I need some help from compiler.

*.map files are nice but they only contain addresses of functions, i.e. the safest thing I can do is to start at that address and to process until the first return / jump instruction (because part of the function could be mentioned data)

*.pdb files are better but I'm not sure what tools to use to extract information like this -- I took a look at DbgHelp and DIA SDK, the latter one seems to be the right tool but it doesn't look very simple. So my question/questions:

To your knowledge, it is possible to extract information about code/data position (address + length) only via DbgHelp?
If the DIA SDK is the only way, any idea what should I call for getting information like that? (that COM stuff is pretty heavy)
Is there any other way?

Of course my concern is about Visual Studio, C/C++ source compilation in the first place.

Thanks for any hint.

© Stack Overflow or respective owner

Related posts about pdb

running pdb from within pdb

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm debugging an script that I'm writing and the result of executing a statement from pdb does not make sense so my natural reaction is to try to trace it with pdb. To paraphrase: Yo dawg, I like python, so can you put my pdb in my pdb so I can debug while I debug? >>> More
Microsoft Management Console stops working when I add snap-in to it

as seen on Super User - Search for 'Super User'
I have Windows 7 Ultimate OS. I'm opening mmc.exe as administrator and trying add Certificates or any other snap-in, then while loading that snap-in MMC breaks and displays following message and after that it closes automatically once I click on close button on that message. What could be the problem… >>> More
How to create a .MAP file from a .PDB file

as seen on Stack Overflow - Search for 'Stack Overflow'
I would like to create a simple .MAP file listing addresses and symbol names from a PDB file. My natural inclination was to look for a tool named "pdb2map", but most of the results I get for that appear to refer to a sample program from the CD included with Debugging Applications for Microsoft .NET… >>> More
pdb show different variable values than print statements

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi, everyone. I am debugging a python module with homemade c extensions. The output seems correct when I print it with 'p' in pdb. But if I use a normal print statement or pickle it, the output is wrong. What could be causing pdb to show different values than normal execution? I can even step… >>> More
Obtaining information about executable code from exe/pdb

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello, I need to extract code (but not data!) from classic win32 exe/dll files. It's clear I can't do this only with extraction of code segment content (because code segment contains also the data -- jump tables for example) and that I need some help from compiler. *.map files are nice but they… >>> More

Related posts about segments

How to load models in the extended MY_Router class in codeigniter

as seen on Stack Overflow - Search for 'Stack Overflow'
I am not able to load models to the extended My_Router class in codeigniter. Below is my code: class MY_Router extends CI_Router { function MY_Router() { parent::CI_Router(); } function _validate_request($segments) { // Does the requested controller exist in… >>> More
PHP pass associative array from one function to another wihle keeping keys intact

as seen on Stack Overflow - Search for 'Stack Overflow'
I have two functions and one array function A { $segments = array(); $segments['word']=$var1; $segments['word2']=$var2; $segments['word3']=$var3; return $segments; } function B { $someVar=$segments['word']; $someVar1=$segments['word']; $someVar2=$segments['word']; $vars['other_stuff']… >>> More
Extract segments from FLV file?

as seen on Super User - Search for 'Super User'
Hello I'm no expert with editing videos, and I need to rip a few segments from an FLV file, and then upload some of them to YouTube. I don't know if I need to convert FLV to AVI for YouTube to accept them. I've taken a look at VirtualDub + the FLV plug-in but the video isn't displayed correctly… >>> More
Maximum number of memory segments that Notes can support has been exceeded

as seen on Stack Overflow - Search for 'Stack Overflow'
hi All, I am using Domino.dll to access a NSF file in C#.NET 2.0 I am using multiple thread to access 4 NSF files at a time, its working fine for small NSF files, but if i try to access large NSF files i get the Out of Memory Exception and Maximum number of memory segments that Notes can support… >>> More
Listing all shared memory segments used by a process on AIX5.3+

as seen on Stack Overflow - Search for 'Stack Overflow'
I would like to find all shared memory segments used by a given process. I am especially interested in figuring out the shmid so i can use it in calls to shmctl(). On Solaris i would just read /proc/$PID/map to figure out that information (field pr_shmid). The contents of that file are defined by… >>> More