1.查壳ELF64 无壳kali中运行用户输入两次flag,程序验证后输出提示,程序退出2.IDA静态分析main:int __cdecl main(int argc, const char **argv, const char **envp) { int stat_loc; // [rsp+4h] [rbp-3Ch] BYREF int i; // [rsp+8h] [rbp-38h] __pid_t pid; // [rsp+Ch] [rbp-34h] char s2[24]; // [rsp+10h] [rbp-30h] BYREF unsigned __int64 v8; // [rsp+28h] [rbp-18h] v8 = __readfsqword(0x28u); pid = fork(); if ( pid ) { waitpid(pid, &stat_loc, 0); } else { for ( i = 0; i <= strlen(&flag); ++i ) {
1.查壳PE64 无壳2.IDA静态分析main:__int64 sub_1400118C0() { char *v0; // rdi __int64 i; // rcx size_t v2; // rax char v4[36]; // [rsp+0h] [rbp-20h] BYREF int j; // [rsp+24h] [rbp+4h] char Str1[224]; // [rsp+48h] [rbp+28h] BYREF __int64 v7; // [rsp+128h] [rbp+108h] v0 = v4; for ( i = 82i64; i; --i ) { *(_DWORD *)v0 = -858993460; v0 += 4; } for ( j = 0; ; ++j ) { v7 = j; if ( j > j_strlen(Str2) ) // str2="{hello_world}" break;
Norman1z