Skip to content
/ AssemblySamples Public

Some sample x64 MacOS assembler code is written in NASM assembly format

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

KonH/AssemblySamples

BranchesTags

Repository files navigation

Mac OS x64 Assembler Samples

Registers

64-bit register Lower 32 bits Lower 16 bits Lower 8 bits
r(a b c d)x
rsi esi si sil
rdi edi di dil
rbp ebp bp bpl
rsp esp sp spl
r(8-15) r(8-15)d r(8-15)w r(8-15)b

Data types

  • byte - 1 byte
  • word - 2 bytes
  • doubleword/long - 4 bytes
  • quadword/quad - 8 bytes

Instructions

Suffixes (Apple syntax): w - word, l - long, q - quad

Instruction Description
mov D, S Move source to destination
lea D, S Load effective address of source into destination
syscall Perform syscall, described later

Utils

  • Get address of data: variable_name(%rip)

Syscall

Syscall constants

To perform syscall find it number here: /usr/include/sys/syscall.h or /Library/Developer/CommandLineTools/SDKs/MacOSX.?.sdk/usr/include/sys/syscall.h

Data type representation

  • int: 32 bit / 4 byte (signed)
  • void, size_t: 64bit / 8 byte (unsigned)
  • ssize_t: 64bit / 8 byte (signed)

Execution

Put syscall number in %eax with offset 0x2000000

Parameters should be in %rdi, %rsi, %rdx, %r10, %r8 and %r9

Return value is %rax

Syscall declarations

  • void exit(int exit_code)
  • ssize_t read(int fd, void *buf, size_t count);
  • ssize_t write(int fd, const void *buf, size_t count)

About

Some sample x64 MacOS assembler code is written in NASM assembly format

Topics

assembly assembler nasm nasm-assembly x64-assembly nasm-assembler

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Languages