C vs ASM: Making the World's SMALLEST Windows App

This is such a masterful explanation. Super technical, as it must be. Fully enjoyed every syllable, and the graphics... well, a gif = 1000 words.
Maybe not for everyone, but my god this is amazing. Thank you Mr. Garage. ;-)

I remember my first Windows 1 application. 4 pages of code and all I got was a window saying "Hello World!". But forgot the Exit button so had to reboot the computer to get out.

People need to understand the quality and type of knowledge Dave is giving out here. This is the kind of information you would normally only ever get by walking into Dave's office, hoping he's not busy, and asking him "how does this work?" My last company called this "tribal knowledge" and every company goes to great lengths to try and extract it from old timers and inject it into newbies. in my experience, you just have to get an old timer to tell you before they retire.
Dave is going way above and beyond by giving that kind of knowledge out for free for everyone to absorb

It's very rare to find experts in their craft who also post quality youtube videos.
For me you're right up there with the Bisqwit yt channel. Thank you for all the video series'
Keep doing what you're doing, Dave :)

Reminds me of a time with my late friend Paul. We worked to develop a partition manager that enabled us to remove the C: partition from view, but it was accessible by Windows because it was in memory. Helped keep it secure. We used some of the same compilers, albeit older versions. I miss my genius friend muchly… have fun hacking the sky Paul! 😊

I remember doing a challenge to make the smallest possible ELF binary that runs and exits with a particular exit code; I was able to do some tricks by setting the "start of .text" field to get it to load a portion of the ELF header itself as if it were program code, and carefully bit-stuffing opcodes into unused header bytes (and selecting whatever other options would mean the bytes could be interpreted as assembly code without crashing). Doing this, I was able to get the program down to just 52 bytes -- exactly the size of the smallest possible ELF header.

When I was at school, we weren't supposed to have executable files on our user areas on the brand-spanking-new Windows NT 3.1 server they'd installed just that summer. Presumably they didn't want us messing anything up, or playing games while we were supposed to be learning how to do a mail merge or whatever (or teaching the IT teacher how to do it because he couldn't find the right page in his notes)
We quickly figured out that just changing the extension to something innocuous wouldn't stop our precious .exe files being detected and auto-deleted, but lo and behold, using a hex editor to change that "MZ" to something else would keep them from being spotted.
Seems weird looking back on it that they'd be so precious about us running executables but they'd given us access to all kinds of programming tools. Turbo C, Pascal, ASM, we could do a lot of damage with those! But Qbasic made it easy for everyone to start making their own games, and VB Classic made it even easier for us to access all the things we weren't supposed to.
I guess we did all learn a lot about computers though, so maybe they had the last laugh!

There's another classic way to find KERNEL32's address without using the import table. At your program's entry point (usually in the CRT code, but since that's cut out it would be main in this example,) ESP will contain a pointer into KERNEL32 since the program's entrypoint is actually called from the function in KERNEL32 that creates the thread, so a return to that function is on top of the stack at the entrypoint (your main function.) So the first instruction of your program can store the initial value at ESP, then you need to round it down to the nearest 0x1000 bytes and search backwards (0x1000 bytes at a time) for the beginning of the DLL, by looking for valid PE Headers (using the DOS header signature, MZ.) Then you can traverse its export table.
You can run into memory you don't have permission to read in this process so you'll want to set up an exception handler that basically does nothing using SEH.
Manually going through the export table this way also has an interesting side effect: it bypasses Compatibility Shims, since those are usually returned by GetProcAddress

Hi Dave,
I know it's a long shot that you might read this. I think it would be an interesting video if you could talk about the file systems, like FAT12/16/32 & NFTS, and there history. Like how they work, file limitations, and if Windows or Linux is better when it comes to them.

I love just listening to people that can explain things simply..
Please keep this up Dave...
Oh, one other thing just found you LED series it time to binge watch...

You really demystified this process for me! Seeing how that works in C is actually really encouraging. I'm learning C, and making a GUI window seemed really complex and daunting, but it actually seems pretty straightforward since you just have to use functions built into Windows and respond to system messages. I was worried that I would have to write the functions that do things like tracking the mouse position.

Love the Steve Gibson name drop!

Wow, for years I used to think that Assembly is hard but after this video I think it's very very hard 😎
Thanks Dave

Hi Dave !
I'm Russian programmer, and started programming 8086 since 90', but before, I was programming ZX80/Elbrus/ДВК 1,2,3/Robotron1715/БК0010/Нейрон/Other
Then, at this time there was a confusion, that when a code is smaller then it should be faster, actually not - say ASM "loop label" is slower on one tick than "dec cx; jcxnz lable" on x86.
It was 30 years ago, but I still remember that goal we were going to archive, and was coded in ASM.

There is an article on doing something similar for Linux elf executables, from the early 00s. The smallest "it runs" files was 46 bytes, the smallest "it doesn't break the rules" was 76. Part of the way it got the size so small (aside from not being a GUI application), was embedding the executable code itself inside the metadata header of the program. It couldn't _remove_ the header, as the elf-checker would refuse to run it, but it could take the stretches of 0s in the header and fill them with useful code. I wonder if a similar approach could shave a few dozen bytes off in this case. It does rely on a hexeditor to do, though.

I thought your first version was masterful, it's incredible how small you have made this. I love this small Win app project of yours. It's so interesting and it explores something that many of us are interested in but don't have the time or expertise to play with. You are a master Dave, it's really incredible what you do. Thank you for taking the time and uploading these for us.

This is the content I subscribed for!!!

I smiled when you mentioned Assembler and optimization as I was an IBM Systems Programer on S/360 & S/370 specializing in optimization back in the day when we had to fit program code in 64K. I also dabbled in programs for DOS and Windows.

It could be amazing to hear about you talking about any emergencies at MS, like a personal view of what it was like to respond go big exploits being taken advantage of

Pure gold. I recall a senior programmer explaining that the "compiler will do all the optimization". Then a low level (ASM) programmer analyzed the time in each routine with a Program Performance Analyzer and recoded the choke points in assembly - the increased performance was substantial, as in "wow that is WAY faster". The original (high level) programmer insisted that now the code was not portable which given the embedded nature of the custom hardware was a lame excuse really and never a design requirement. Oh, and it took far less ROM space at a time when ROM was a major expense in the COGs of the product. To me this illuminated the strength of a full stack programmer. From bits to drivers all the way up to presentation layer (and now network) a true programmer should know when and where to apply their toolkit to make the best solution than can be achieved. I will note the same coding god was one of the first to truly master multicore/multiprocessing. His intimacy with the hardware made for design win after design win.

This video explains windows development on a meta level better than so many books and tutorials or I went through only when I was younger. Amazing work!

developers in 2023: "I'm gonna bundle a full web browser with my application!"

Wow, Dave - Happy New Year! Absolutely loved this episode! I love the asm deep dive and the offer to allow us to help. Have to agree with others, its masterful indeed! More formally however I think you touched on something to be loved - teamwork. By doing it the way, and at the level you do, it brings out the best in competition. Along the way you put an sweet sample for any watcher to get their hands dirty and learn. I didn't see the jag back to C coming, yet fully believe you will take asm across the line for the checkered flag. As you might guess., I cut my teeth on 6502 asm. Be well and rock on!

I'll *absolutely* be linking this to others I meet who just really want to understand how some programs work in the Windows OS at the assembly level. This does a fantastic job explaining everything in a succinct way that can be searched for online later if necessary! It's also the video that made me realize that I'm starting to become comfortable reading asm, and boy does that thought make me feel really strange - but powerful ahahah~
Thanks for the great video Dave, and special thanks for making the original task manager program!~

This was exciting and fun, both for the history and the challenge. Absolutely love this and will be looking at source code to learn! Thank you.

Great to see you touch base with the demoscene! :D
Size demos were always lots of fun for me.

This reminds me of a 362 byte MS-DOS device driver that I wrote to correct the MS-DOS date and time after an add-on hard disk manufacturer's bios had destroyed it. It was a rush and it was originally just under 2K. The manufacturer of the add-on said that was too big - I told them it didn't matter provided it was under 2K as that was the cluster size on their HDD and once the driver had done its work it quit with its end address equal to its start address so no memory was used. But they wanted it to "look smaller" so at 3 AM that day I had it down to 362 bytes :) 8086 assembler none of this fancy 32 bit stuff!

Throwback to a time when every problem wasn't solved by throwing in another hundred megabytes (or so) of additional npm modules, and some custom tracking js on top of that for good measure.

Could tricks with overlapping header regions (like for ultra-tiny ELF files) be applied to EXE? If you search "tiniest ELF program", there's a really good article on the muppetlabs blog that gives a writeup of the technique as applied to ELF. Either way though, I'd love to see a deep dive into the internals of the EXE format, and what you'd be able to achieve in a from-scratch binary that doesn't rely on linker tools.

Great video Dave, really enjoyed that. It’s been a while since I did any Windows C programming, that was a trip down memory lane 👍

Nice It works. My first assembly GUI thought the day would never come. Thank you!

And with every dave's awesomeness video explaining how windows get drawn and resized it frustrates me anew that the company i started at has been working for years with a program that is not resizable and in a window, can only be maximized and then puts the program in a corner at the same size and fills the rest with white, and nobody has enough reach to do anything about it lol

This was absolutely wonderful!!! Thank you Dave!!!!

I remember, back in the day, there was at least one packer that would overlap a lot of the DOS Header with the PE Header (possibly the optional header too). Not sure how well that holds up with the newer windows OS versions (a lot of these packing methods start to sacrifice cross OS compatibility to eek out a few more bytes of file size savings)

I love these kind of videos, great work.

So beautifully epic, thank you so very much for existing! ... And making this video, of course... And all the others!

Beautifully explained. As a 14 year assembly software engineer I really appreciate the detail here. Thank you! Looking forward to your next video. 🙂

Finding and watching one of your video always make my day better!
Thanks Dave!

crikes! I wish I learned this stuff years ago (engineering, electronics and chemistry were fun and all, but...). I remember back in 1980 as a kid, wondering how to get the information for programming this kind of stuff - but, back then, "kids" simply weren't allowed to use computers in schools (mine would literally, expel a student if they touched any computer - really). Fortunately, I had a rich friend who's parents could afford a machine and he actually let me use it and showed me the ropes. Unfortunately, getting decent documentation on any computer programming from the library ( besides punched cards and teletype machines) was difficult or impossible (you needed to be in college to even get your hands on any juicy bits of information - forget getting anything from IBM or any big company at the time - trade secrets and all, especially as a teenager!). Glad to see the world has opened up since then.

Just had to write a small poll(2) based server for some FreeBSD systems I work on and was curious how big it was. The normal compile came in at just over 31k. Setting CFLAGS to -Os (gcc) and running strip(1) I got it down to 22k. With some other tricks - including upx - I got it down to 10k. But this a program that does real work. It is interesting how much baggage Windows brings along even though Unix is so much older.

Back in the 90s when I was a young hacker want to be, I would open exe files in dos edit and thought how does anyone program? One would need a crazy keyboard. I did take note of the starting 2 bytes were Mz. Later in my hacking career I downloaded the virus workshop. Before you could use the program, it would prompt you to enter the first 2 byes of an exe file to test if you know what you were doing. I remember being so excited that I knew what to enter. Good times!

Fun little history fact. Word Perfect was written in ASM, and this is why it was so fast. Up to Word Perfect 7 for Windows. But when Corel bought Word Perfect, they did not do their due dillegence and had a horrid supprise when they realized that Word Perfect 6 for windows 3.1 was actually ALSO written in Assembly.
So, Word Perfect 7 for Windows 95 was a complete re-write with some 16bit components because, well, they couldn't re-write it all in two years!

I've been searching for a video like this for literally years omg thx ♥️♥️♥️

Great video! Brings back a lot of memories of similar optimizations I did coding Z-80, 6502 and 8086 projects over the past 4 1/2 decades. It makes me want to fire up masm just to play for a while.

Thanks Dave. This was a cool exercise. Brought me back to the 1980s. I worked writing programs for neuroscience. Trying to get them to run in 64K. MS-DOS, Early windows and PDP-11s . I just created a java program that is 50mg. I wonder if I can get it to 45mg. :)

I once wrote a Windows program for a Production Ctrix farm in assembly. Well, when I say "production" it only had to work for a week or so. The company was moving from "Old system" to "New system". Most people accessed the system through Citrix published apps. We didn't want to just delete the app for the old system as we would then get swamped with support calls for "app doesn't work". Instead I wrote a small program that just popped up a windows and said "Remember all that training you got about the new system? How about you try the new app." - or something to that effect. On desktops we could just replace the old app with a batch file, but you can't have a batch file as a published app (or couldn't - I haven't used Citrix for some years now), so it needed to be an executable. Since software programming wasn't our thing I didn't have access to a (legal) development environment, so I was looking around for something that I could use for free to do this one time task. Stumbled across MASM and decided to write it in assembly. It worked and didn't crash the Citrix farm. After a week or two, once everyone was used to the new system we just deleted it. I was always surprised that I was able to get a working Win32 app written in assembly. It probably wasn't as neat and well formed as Dave's, but it did work for the few days we needed it. Thanks for the nostalgia from this old nerd 😃

Brilliant. Wish I'd known all of this 20 years ago.

I like the Steve Gibson reference! I've been using his utilities for about as long as I can remember.

I am taking assembly at the community college this semester. I love this topic and will be replaying this video as more of it begins to make sense.

This is my fav vid of yours yet. Love Assembler.

My best efforts at hacking were to build a Batch file that converts a text file of hex characters (eg, "A0B1C2", ignoring spaces and newlines) into a binary file. I used this to create executables on systems where the creation of executables were somehow prevented. I challenge Dave to do that.

I miss the old task manager... the new one looks better but it is a laggy nightmare.

I wish people like you still worked at Microsoft. I just recently installed Win10 as a second OS alongside Ubuntu. I allocated 40GB thinking that would be plenty and Windows took up 37GB by itself!!!

As I used to mess around with asm and win32 API and spend time on small Internet forums about asm and RE and stuff back in 2000s I could've NEVER imagined that one day I'll be listening to one of the guys who used to actually develop and work with this complexity I was trying to understand back then.. Dude you are a legend

I love for XOR reg1, reg1 is the same as a MOV 0 instruction, and OR reg1, reg1 is just an alternate NOP instruction

This video took me down memory lane when I was still a student learning Assembly programming. We were just programming for the 8086 on DOS back then (1991). Thanks for this! :D

I used to love writing assembly (for x486 under MS-DOS) for writing code for my own purposes. I rarely had much opportunity to use it at work, except occasionally embedded in a C function.
Thanks for shouting out Richard Feynman, too... he's one of my all time heroes.

What a fantastic episode and blog! As someone who's learning to code, I never thought that so much would be going on under the hood just to link to the system libraries.

I went deep down this sort of rabbit hole back in the 2000s. Imagine how much easier it was before ASLR...
Malware and binary protection systems alike used techniques like that of removing and/or messing up the import tables so that people could not as easily depack executables and modify out protection. Lots of reversing tools of the era: LordPE, ImportREC, etc. that helped in that regard.

This tickled parts of my brain that have gone unmolested for too long. Coded for decades at a bank, a car, and aerospace companies. Sadly, I all too quickly moved into management and lost the hands-on experience. Watching this made me feel young again!

Great idea for content - I've always held that every serious developer should take at least an intro ASM course

A always find that modern programs really need the optimization, speed and size that Assembly can provide. If you want to have some fun, just take a look at the .Kkrieger demo game. It's a full 3D shooter that fits under 97kb and runs on Windows.

Small is beautiful! its efficient, its fast and light on resources too... not touched an assembler or machine code monitor since the 90's but you have given me some very warm fuzzy memories - thankyou

More of this kind of content please

It seems to me you could save several bytes by making the window struct part of the program and simply loading constant parameters as part of the code; thus, you don't need to load them into registers and store them into the struct...

Great concept and implementation on this video Dave. Very enjoyable to watch. Thank you!

"I'll do it all in notepad and assemble it from the command line".
I like the cut of your jib, sir!

Just wanted to say that I have a ton of respect for you, given that you are producing these videos now that you are retired. It's really quite neat remembering some of the stuff I learned back in the day. We are a diminishing breed, people who program in assembly, know the win32 api...

Back in high school I was messing around with Flat Assembler and managed to make a functional yet tiny 1.5 KB Windows application that had all sections (code, data, and import tables) merged into one. Good to know it's possible to go even lower than that.

I would press the like button twice if I could. It is so interesting listening to you Dave!

Yay look forward to watching this later

love small code and win32 programming and optimization. thank you task manager man!

Excellent. So much good stuff here

Hi Dave, recently found this channel! Very nice to see the insights into the older operating systems. I'm currently an embedded software engineer developing software mainly in C for microcontrollers (automotive) and one of my hobbies the the demoscene. Would love to hear your thoughts on the modern 64k/4k intros in a video sometime (some recommendations: Mercury - The Timeless, Conspiracy - Offscreen Colonies, TBC - Elevated)
Regards from a fellow programmer (one that possible has autism but was never diagnosed) (y)

thank you for this great presentation. clear & concise. it was really interesting for me, as I was a Windows developer for many years.

I've been a Linux guy since about 1995 so have to sneak in the back but really enjoy these super technical videos. Thanks!

An enjoyable episode for the incurable tinkerer :) Nice to hear the tip of the hat to Mr Steve Gibson. Would actually be a fun episode to watch you guys talk low level assembly coding tricks.

What I'm trying to learn is optimization of how to write software which takes advantage of different opcodes of the CPU generation and stepping to get the most out of the h/w. e.g. SIMD/AVX instructions.
With libraries, you can call a function and have the function determine the h/w it's running on and chose which version of the function optimized for the local h/w transparently. But in the main block of code CPU optimizations are manual and have to be accounted for there.

For whatever it's worth, I made a console hello world in C and compiled with GCC (windows) which even with flags got stuck around 21k. I switched to the TCC compiler and used it's -O2 flag and the same source compiled to 2k. I'm sure a real programmer (not me) could get that down into bytes, but I feel like I got something done today!

...I was just about to say that!
You Mr. Dave are a God to me. Just awesome thanks

Love this stuff, thank you.

I think this very concept, of making the smallest code to do a thing, needs to be ranked on any new version of a code item. With the way you demoed the code for late bound look up(I believe you called it runtime lookup) of referenced libraries, a version of this as a OS stub would make for a very tight OS, possibly.

fantastically interesting and educational. I think I once used a Petzold book to do something basic, and sorta hated WIN32 type programming, but I still found this interesting. I guess technical videos like this will never get a ton of views, as the audience is small. But you deserve more views!

Nice nod to "The Friendly Giant"

i laughed way too hard at the addition of "your token gray bearded wizard"

Hello! In my opinion - for the cheap MCU like STM8S writing in assembly have a sense - because the Cosmic and Raisonanse C compilers costs 1000$. But... when you have libraries and pure architecture - maybe, it may have sense for the PC or a server. The TCP, TLS protocol must be written in aseembly - for the best performance. It is also actual for RDBMS .

I love the way you explain 'things'. Anyway I am happy to know the artist who has created taskmgr, the probably most stable windows application.

I learnt to program Windows with Charles Petzold’s amazing ‘Programming’ series of books. When I moved from Win16 to Win32 his books made the transition so easy.

I tried every book back in the day to code to traditional Windows using the books available, and I could not make any sense of it, until I got this book: " "Introduction to Mfc Programming With Visual C++" by Richard M. Jones (2000). This book did the trick. I just code for fun and now I'm into playing chess more rather than programming, having done pretty much everything I wanted to do in programming, primarily using C#, including Azure cloud and web functions and writing a chess program. At some point I might learn assembly language just for fun, after I get the GM title, lol.

Wow, very cool. Just think how much faster Windows would be if all applications were created as small as possible.

Super interesting. I wish I knew this decades ago. Thank you.

i just wrote a program while watching this that uses NtRaiseHardError to display a message box, used a custom dos stub, and set the alignment to 16 instead of 4096. now i got it down to 992 bytes by using system calls. crinkler doesn't work because the code is 64-bit.

Brilliant. Seems like this kind of technique ought to be standard in modern executables to cut down bloat. Bring back ~100kb Task Manager :)

First of all, absolutely wonderful and impressive work, that executable is SMALL!
In another direction though, I noticed that tiny.exe's memory usage is rather large. ~1.3k memory (private working set), ~10k working set, but more curiously ~131K Commit size!
I would be curious to see the same exercice but in the direction of reducing the runtime memory usage instead.
With nowaday's ever so popular Electron apps eating up absolutely absurd amount of memory at runtime, I'd love to see a trend of people pushing for lower runtime RAM footprint =)

Awesome stuff. I miss the days of keeping things small. Maybe when the hardware finally stops advancing apace, we as an industry will return to it.

one of your best videos!

"I've made a fully functional Windows program that fits in 644 bytes!"
"Wow, that's tiny, what does it do?"
"...What do you mean, _do?_ "

Interesting how similar avoiding static DLL imports - LoadLibrary, without static strings, etc - is to how malware often works.

Anybody here who still learned C with the very first edition of K&R? (Because there have been only three books about C available at this time.)

Reminiscing about .kkreiger ...
Thanks Mr.