.Hello,
I am new to the IDA Plugin SDK (and to this forum), and I'm trying to write a simple plugin and I saw a reference to your forum on the IDA plugins tutorial (which the author did a great job in writing it).
My question is this - Is it possible, and if so, how would you convert a code byte back to data, so that you could try and disassemble again from a different offset within the previously dis-assembled opecode sequence?
for example:
the character array "test123" is:
seg000:00000000 74 db 74h ; t
seg000:00000001 65 db 65h ; e
seg000:00000002 73 db 73h ; s
seg000:00000003 74 db 74h ; t
seg000:00000004 31 db 31h ; 1
seg000:00000005 32 db 32h ; 2
seg000:00000006 33 db 33h ; 3
If I call ua_code on byte 2 (73h), I will get a 2 byte opcode sequence:
seg000:00000002 73 74 jnb short near ptr 78h
I would now want to disassemble from byte 3, and get the following:
seg000:00000003 74 31 jz short near ptr 36h
But it seems that ua_code sees that the address has already been analyzed to code - and I would have to analyze it back to data before I can do that.
Any thoughts?
Thanks,
Avri
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}