Thank you so much Josh! The calling convention for a particular program is the same for all functions, right? If different calling conventions are used for different functions in the same program, then the program can't be compiled, right?
I can’t say for sure as I haven’t looked into it in too much detail. Some compilers let you define the convention, but as to if they enforce that for every function or just programmer written ones I’m not sure. My assumption is that it is the same, that is usually what I see with programs that are not malware. Of course, malware authors or those trying to protect IP may throw all sorts of things at you!
How so? Most real world apps will be compiled and the compilers follow these conventions. Malware authors or those that use assembly may find it easier to deviate - but even malware authors regularly use standard compilers. Decompilers and disassemblers simply recover what was originally compiled.
Great! super clear explanations and good examples
Glad you liked it
Which programming language you use i think it is c++ ?
Usually a combination, primarily c and some c++.
Really Amazing video, it deserves more views. Thanks
Thanks a lot!
Thank you so much Josh! The calling convention for a particular program is the same for all functions, right? If different calling conventions are used for different functions in the same program, then the program can't be compiled, right?
I can’t say for sure as I haven’t looked into it in too much detail. Some compilers let you define the convention, but as to if they enforce that for every function or just programmer written ones I’m not sure. My assumption is that it is the same, that is usually what I see with programs that are not malware. Of course, malware authors or those trying to protect IP may throw all sorts of things at you!
@@jstrosch Thanks Prof!
real world decompiled apps for the most part never follow these convention rules. its almost always mixed up in some way or another
How so? Most real world apps will be compiled and the compilers follow these conventions. Malware authors or those that use assembly may find it easier to deviate - but even malware authors regularly use standard compilers. Decompilers and disassemblers simply recover what was originally compiled.
Which programming language you use i think it is c++ ?
I mainly teach in C but there will be some c++ and, of course, plenty of assembly along the way