Finished extraction of return address from the stack, and libc syscall adress

2025-12-24 18:33:08 +08:00 · 2022-03-17 19:32:32 -04:00
parent 9647972531
commit fcf43ff180
10 changed files with 9999 additions and 9475 deletions
--- a/src/helpers/.gdb_history
+++ b/src/helpers/.gdb_history
@@ -39,3 +39,72 @@ r
 si
 si
 q
+b *(test_time_values_injection +116)
+r
+si
+d/i 0x405130
+d/i2 0x405130
+display/i2 0x405130
+display/i 0x405130
+display/i4 0x405130
+display/2i 0x405130
+display/10i 0x405130
+disassemble /r 0x405130
+disassemble /r 0x6095d8f7ff7f
+disassemble /r 0x6095d8f7ff7f00
+disassemble /r 0x6095d8f7ff7f0000
+disassemble /r 0x6095d8f7ff7f00007612
+disassemble /r 0x6095d8f7ff7f000076
+disassemble /r 0x6095d8f7ff7f0000
+disassemble /r 0x00007ffff7d89560
+d/10i 0x00007ffff7d89560
+context
+disassemble /r 0x405130
+d/10i 0x7ffff7d89560
+disassemble 0x7ffff7d89560
+disassemble /r 0x7ffff7d89560
+disassemble timerfd_settime
+disassemble __libc_start_main 
+q
+disass test_time_values_injection 
+b *(test_time_values_injection+74)
+r
+si
+ni
+si
+disass timerfd_settime
+b 0x00007ffff7d89560
+b __timerfd_settime 
+r
+r
+r
+r
+r
+r
+r
+r
+r
+del 1
+r
+q
+b __timerfd_settime 
+b timerfd_S
+b timerfd_settime
+r
+q
+b timerfd_settime
+r
+si
+ni
+disass timerfd_settime
+disass /r timerfd_settime
+q
+b timerfd_settime
+r
+si
+ni
+disass /r timerfd_settime
+r
+si
+ni
+q
--- a/src/helpers/peda-session-execve_hijack.txt
+++ b/src/helpers/peda-session-execve_hijack.txt
@@ -1,2 +1,2 @@
-break *(test_time_values_injection +116)
+break timerfd_settime