#reversing #Tips - The Assembly Language Debugger(ald)

1. ================================================================
2. The Assembly Language Debugger(ald)is a compiled C tool for
3. debugging programsat the instruction level.
4. ================================================================
5. There is a webpage for ald at:
6. http://ald.sourceforge.net
7. =====================
8. How to install (REMnux)
9. =====================
10. wget http://downloads.sourceforge.net/project/ald/ald/ald-0.1.7/ald-0.1.7.tar.gz
11. tar -zxvf ald-0.1.7.tar.gz
12. apt-get install apt-file
13. apt-file search readline/readline.h
14. apt-get install libreadline6-dev
15. make
16. make check
17. make install
18.  
19. =====================
20. Usage (REMnux)
21. =====================
22. root@remnux:/home/xxx/malware/ald-0.1.7# ald -h
23. Assembly Language Debugger 0.1.7
24. Copyright (C) 2000-2004 Patrick Alken
25.  
26. Usage: ald [options] [filename]
27. [filename] : Path to executable file to debug
28.  
29. Options:
30. -h : Output this help screen
31. -v : Output version information
32.  
33. =====================
34. man page (REMnux)
35. =====================
36. ald(8) ald(8)
37. NAME
38. ald - Assembly Language Debugger
39.  
40. SYNOPSIS
41. ald [-v] [-h] [filename]
42.  
43. DESCRIPTION
44. The Assembly Language Debugger allows breakpoint debugging at the assembly level. It provides a means to examine and/or change a program's memory during
45. execution and stop the execution of a program for specified conditions. There is also a built in disassembler which allows you to view the program's exe-
46. cutable code in human-readable form.
47.  
48. ALD reads commands interactively after it has been invoked. Every command is documented completely in the help system, which can be accessed via the help
49. command. The most common commands used during the process of debugging are as follows:
50.  
51. break address
52. Sets a breakpoint at address
53.  
54. r [arguments]
55. Begin execution of program using [arguments]
56.  
57. c
58. Continue execution of program (after it stopped due to a signal, breakpoint, etc)
59.  
60. n [num]
61. Step [num] instructions, stepping over any subroutines
62.  
63. s [num]
64. Step [num] instructions, stepping into any subroutines
65.  
66. d [options]
67. Disassemble machine opcodes (see help dissassemble for more information)
68.  
69. help [commands]
70. Give detailed help, in general or for specified commands
71.  
72. quit
73. Exit ALD
74.  
75. OPTIONS
76. The following are command line options which may be passed to ald when it is invoked.
77.  
78. [-v] - Output version information.
79.  
80. [-h] - Output help information.
81.  
82. [filename] - Name of file to be loaded for debugging.
83.  
84. AUTHOR
85. Patrick Alken <pa59@cornell.edu>