Found a bug in ndisasm
admin 2014/04/21 Programming 1
Type this command, ndisasm will hang (I guess it eat up all 4GB address space, disassemble offset starts at 0xfffffff0, which is very high address). My version is “NDISASM version 2.11.02 compiled on Apr 9 2014”, running on mac mavericks.
ndisasm -b 32 -o 0xfffffff0 temp.bin
temp file :
The bug is filed here https://sourceforge.net/p/nasm/bugs/557/
I found the root cause. The ndisasm come with Xcode is too old, version is “NDISASM version 0.98.40 (Apple Computer, Inc. build 11) compiled Feb 6 2013”, it will causes this problem. The latest ndisasm won’t. I thought I am using the latest ndisasm but i was wrong.