Finding main() in Stripped Binary - bin 0x2C

preview_player
Показать описание
Stripped binaries miss the symbol information of functions and variables. Debugging such a binary is a little bit more tricky, but there is a simple method to find the main() function of the program.

-=[ ❤️ Support ]=-

-=[ 🐕 Social ]=-

-=[ 📄 P.S. ]=-

All links with "*" are affiliate links.
LiveOverflow / Security Flag GmbH is part of the Amazon Affiliate Partner Programm.
  1. LiveOverflow
  2. Live Overflow
  3. liveoverflow
  4. hacking tutorial
  5. how to hack
  6. exploit tutorial
Рекомендации по теме
Finding main() in 0:06:33

Finding main() in Stripped Binary - bin 0x2C

Finding main function 0:04:28

Finding main function in a Stripped binary | Learn Stripped Binary analyses

Finding Main() with 0:05:24

Finding Main() with Ghidra

Reversing Statically-Linked Binaries 0:13:35

Reversing Statically-Linked Binaries with Function Signatures - bin 0x2D

Reverse Engineering w/GDB 0:22:37

Reverse Engineering w/GDB and Ghidra! | picoCTF 2022 #08 'Keygenme'

Reversing stripped binary 0:23:14

Reversing stripped binary [Hebrew]

Neural Reverse Engineering 0:14:27

Neural Reverse Engineering of Stripped Binaries using Augmented Control Flow Graphs

Debugging a Stripped 0:06:54

Debugging a Stripped Binary in GDB! - picoCTF 'not crypto' challenge

3B 3 Probabilistic 0:11:56

3B 3 Probabilistic Naming of Functions in Stripped Binaries

Debin: Predicting Debug 0:26:33

Debin: Predicting Debug Information in Stripped Binaries

Beginner Issues when 0:05:50

Beginner Issues when Debugging with gdb + gef or pwndbg, ...

Stripped vs. Non-Stripped 0:13:00

Stripped vs. Non-Stripped Binaries: Understanding Symbolic Information in the ELF File Format

ED96 - Reverse 0:51:48

ED96 - Reverse Engineering Stripped Binary & Ptrace

Reverse Engineering (RE) 0:36:42

Reverse Engineering (RE) Challenge Walkthroughs - PicoCTF 2022 (BEGINNER-FRIENDLY Capture The Flag)

[PRACTICAL]Anti-Reversing Techniques, How 0:45:44

[PRACTICAL]Anti-Reversing Techniques, How To Deal With Stripped Binaries[HINDI]

3 Tips I’ve 0:00:44

3 Tips I’ve learned after 2000 hours of Leetcode

How to Inspect 0:07:53

How to Inspect Compiled Binaries (binutils, objdump)

Cracking a stripped 0:07:16

Cracking a stripped CrackMe with Ghidra | Binary Patching

finding a straight 0:00:50

finding a straight guy at pride 🏳️‍🌈👀

Neural Reverse Engineering 0:41:34

Neural Reverse Engineering of Stripped Binaries Technion Cyber-CYBERDAY 2020

OSPREY: Recovery of 0:15:01

OSPREY: Recovery of Variable and Data Structure via Probabilistic Analysis for Stripped Binary

Why Linus Torvalds 0:02:43

Why Linus Torvalds doesn't use Ubuntu or Debian

Why Is The 0:12:50

Why Is The PE Entry Point Not The Same As Main SEH and The _security_init_cookie [Patreon Unlocked]

Cannot access memory 0:13:22

Cannot access memory at address // Debugging PIE Binaries affected by ASLR - bin 0x2E

Комментарии
Автор

I'm really looking forward to every single haxember video! I love the style of these videos.

rattatteb
Автор

I was breaking my head trying to understand how to figure out the start of the main function in a C compiled windows binary for the last 2 days and you come up with this video today. The coincidence is crazy lol.

EvilSapphireR
Автор

echo "set disassembly-flavor intel" >> ~/.gdbinit

allurbase
Автор

YouTube : LiveOverflow last uploaded 2 days ago
LifeOverflow : I am speed

VaradMahashabde
Автор

Really helpful dude. Reversing is becoming my hobby and this helps a lot.
Keep it 1337!

asanz
Автор

Thanks so much for uploading so many interesting videos recently! It's always nice to come home and learn something new.

priyasrikumar
Автор

Whooaaa! I ran across this issue before but just thought I compiled it wrong! I switched to gcc and didn't give it a second thought.

NOW, here I am, just cruising your content because you rock... and BAMM! I found the answer to a problem I didn't know I had!

You rock!

strykerk
Автор

4:13 RIP will be pointing at the next instruction after 0x50d so it is 0x514. 0x514+0xe6 = 0x5fa

omardarwish
Автор

That reaction when you saw the AT&T syntax, relatable :D

lilendian
Автор

you seem to be talking rather calmly in this new format, not sure if it was always like this but you seemed more enthusiastic when you only did voice over. not complaining, just an observation, I still love the videos!

snomad
Автор

4:11 you said RIP is 0x50d but it actually points at the next line so 0x514 is RIP, great video overall though, thank you!

Guysudai
Автор

Love the shorter, simpler videos. Also that hoodie is glorious, where would one acquire such a piece?

waSWglu
Автор

I see you also like to follow Ben Eater projects ;)

MephistoMods
Автор

Teddy fresh 😎 Very interesting video! Definitely useful. Does this work for windows binaries as well?

Sonyim
Автор

My God! This was exactly what I needed, thanks LO :)

ln
Автор

Great video, I love content you are putting out lately! Although I prefer old-style videos of yours, with hand-drawn black on white drawings instead of face cam.

verticallife
Автор

Loooovvveee that pastel coloured hoodie!

Handskemager
Автор

once I wrote int x="cat"; and it compiled. Take that LiveOverflow

stewiegriffin
Автор

these are the kind of tutorials newbs like me need

mathlover
Автор

Quick question: How would you go about creating a separate symbol file? Like, in GDB, say "this address is now the function 'main', interpret it as such" and possibly export it later in the session.

Adowrath