push ebp相当于:
add esp,4
mov dword ptr[esp],ebp
pop ebp相当于:
mov ebp,dword ptr[esp]
sub esp,4
call func_address相当于:
push eip
jmp func_address
ret相当于
add esp,4
jmp dword ptr[esp-4]
带参数的ret指令
ret 8相当于
add esp,12
jmp dword ptr[esp-4]
push ebp相当于:
add esp,4
mov dword ptr[esp],ebp
pop ebp相当于:
mov ebp,dword ptr[esp]
sub esp,4
call func_address相当于:
push eip
jmp func_address
ret相当于
add esp,4
jmp dword ptr[esp-4]
带参数的ret指令
ret 8相当于
add esp,12
jmp dword ptr[esp-4]