2018-04-02

recover the signature

http://weeklyalgo.codes/2017/07/16/Reverse%20Engineer%20a%20stripped%20binary/
stripped staticly linked binaries' information can be recovered by using lscan and rizzo

mujs

  1. the var is stored by binary tree using it's name as the key.
  2. fread only read 256 bytes each time.
  3. load("xxx") can read a file to the heap. So all we need now is a attribute address leak. leak the heap address and leak everything in the heap.

the var in mujs

each member of the var in mujs is a property. with the idx as the name..
every time you want to get the element in the var list, it select it by js_getindex(J, 0, k);
and k is the idx number.

volatile

an example:
char *volatile out;
it will make sure that the out pointer wont be optimized, to avoid the mistakes. Every time when it will be used, the volatile parameter should be re-read from the memory.

©著作权归作者所有,转载或内容合作请联系作者
平台声明:文章内容(如有图片或视频亦包括在内)由作者上传并发布,文章内容仅代表作者本人观点,简书系信息发布平台,仅提供信息存储服务。

推荐阅读更多精彩内容