- 3
- 520
Snehal Tamot
Приєднався 30 сер 2016
Відео
picoCTF gdb baby steps part 4
Переглядів 1963 місяці тому
step into func1 to see the value that gets multiplied into $eax, for the flag, convert that hex number into a decimal number
picoCTF gdb baby steps part 3
Переглядів 3213 місяці тому
before you return from the current stack frame look at $rbp-4 which holds the flag's value.
could you explain why those breakpoints were necessary in finding the flag? opening the file in r2 already gave us the flag which is that on your breakpoint 3, its just that when i originally input it, it failed, so i just went and swapped the endianness and got the flag lol
The breakpoints (while not necessary) just provide me practice for when the values going into registers aren't as obvious. Example scenario: if instead of just putting the value into the register, what if the value instead came from some function and I didn't want to step through that function. It would just be easier for me to put a breakpoint after that function completes and look at what value went into a specific register.
@@snehaltamot220 ohh dang!! thank you, i'll keep that that in mind, thanks again for the excellent video and insight! awesome!!
This looks like an analog horror haha but thank you for the guide
thnx keep going :)