Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to Intel x86-64 Assembly, Architecture, Applications, & Alliteration Xeno Kovah – 2014 xkovah at gmail.

Published byΦόβος Λαγός Modified over 6 years ago

Similar presentations

Presentation on theme: "Introduction to Intel x86-64 Assembly, Architecture, Applications, & Alliteration Xeno Kovah – 2014 xkovah at gmail."— Presentation transcript:

1 Introduction to Intel x86-64 Assembly, Architecture, Applications, & Alliteration
Xeno Kovah – 2014 xkovah at gmail

2 All materials is licensed under a Creative Commons “Share Alike” license.
Attribution condition: You must indicate that derivative work "Is derived from Xeno Kovah's ‘Intro x86-64’ class, available at Attribution condition: You must indicate that derivative work "Is derived from Xeno Kovah's 'Intro x86-64’ class, available at

3 Bomb lab From CMU architecture class - Thanks to Randal E. Bryant & David R. O’Hallaron for providing the source code so it could be ported to x86-64 (and Windows in the Intro RE class) The textbook for the class which the bomb lab is a part of is “Computer Systems: A Programmer's Perspective, 2nd Edition, Prentice Hall, 2011; Bryant and O'Hallaron”

4 Bomb lab 2 Goal is to reverse engineer multiple phases to determine the program’s desired input Create a text file with answers, one per line, named “answers” gdb -x myCmds bomb run with “r < answers” Should add/remove breakpoints on the different phases as you go along

5 Bomb lab - EXPERT MODE! If you already know a thing or two about asm (and were just here for the 64 bit update), let’s see how far you can get how fast if you play it on expert mode, without symbol information. Execute the following command in the directory where the bomb resides: strip bomb This is more like what you will actually see with malware. You’re not going to get symbols in that case. Now go ahead and see how fast you can go through the rounds ;)

6 Phase_2 hint sscanf() is defined as follows:
int sscanf(const char *str, const char *format, ...); So if it was e.g. “sscanf(foo, “%d %d”, &a, &b)” It would take whatever string was pointed to by the first argument, parse it according to the second format string argument, and then store the parsed out values in the variables which were given by the subsequent n arguments (for n = 2 in this case) “On success, the function returns the number of variables filled"

7 Phase_2 hint sscanf() is defined as follows:
int sscanf(const char *str, const char *format, ...); So if it was e.g. “sscanf(guess, “%d %d %d %d %d %d”, &var1, &var2, &var3, &var4, &var5, &var6,)”

8 GDB/Bomb Lab Cheat Sheet
Christian Arllen found this, and it has many more example of gdb syntax, as well as some help for if you get stuck on the lab ll2010/extras/mygdbnotes.txt (get it on google cache while you can, because it's gone now)

Download ppt "Introduction to Intel x86-64 Assembly, Architecture, Applications, & Alliteration Xeno Kovah – 2014 xkovah at gmail."

Similar presentations

Lecture 3 Some commonly used C programming tricks. The system command Project No. 1: A warm-up project.

Lecture 3 Some commonly used C programming tricks. The system command Project No. 1: A warm-up project.
Utilizing the GDB debugger to analyze programs Background and application.

Utilizing the GDB debugger to analyze programs Background and application.
Inline Assembly Section 1: Recitation 7. In the early days of computing, most programs were written in assembly code. –Unmanageable because No type checking,

Inline Assembly Section 1: Recitation 7. In the early days of computing, most programs were written in assembly code. –Unmanageable because No type checking,
Embedded Systems Programming Introduction to cross development techniques.

Embedded Systems Programming Introduction to cross development techniques.
Objects & Object-Oriented Programming (OOP) CSC 1401: Introduction to Programming with Java Week 15 – Lecture 1 Wanda M. Kunkle.

Objects & Object-Oriented Programming (OOP) CSC 1401: Introduction to Programming with Java Week 15 – Lecture 1 Wanda M. Kunkle.
 2002 Prentice Hall. All rights reserved. 1 Chapter 2 – Introduction to Python Programming Outline 2.1 Introduction 2.2 First Program in Python: Printing.

 2002 Prentice Hall. All rights reserved. 1 Chapter 2 – Introduction to Python Programming Outline 2.1 Introduction 2.2 First Program in Python: Printing.
Memory & Storage Architecture Seoul National University Computer Architecture “ Bomb Lab Hints” 2nd semester, 2014 Modified version : The original.

Memory & Storage Architecture Seoul National University Computer Architecture “ Bomb Lab Hints” 2nd semester, 2014 Modified version : The original.
Recitation 1 Programming for Engineers in Python.

Recitation 1 Programming for Engineers in Python.
M-files While commands can be entered directly to the command window, MATLAB also allows you to put commands in text files called M- files. M-files are.

M-files While commands can be entered directly to the command window, MATLAB also allows you to put commands in text files called M- files. M-files are.
ITEC 352 Lecture 11 ISA - CPU. ISA (2) Review Questions? HW 2 due on Friday ISA –Machine language –Buses –Memory.

ITEC 352 Lecture 11 ISA - CPU. ISA (2) Review Questions? HW 2 due on Friday ISA –Machine language –Buses –Memory.
Memory & Storage Architecture Seoul National University GDB commands Hyeon-gyu School of Computer Science and Engineering.

Memory & Storage Architecture Seoul National University GDB commands Hyeon-gyu School of Computer Science and Engineering.
Introduction to Python

Introduction to Python
David O’Hallaron Carnegie Mellon University Processor Architecture Overview Overview Based on original lecture notes by Randy.

David O’Hallaron Carnegie Mellon University Processor Architecture Overview Overview Based on original lecture notes by Randy.
IPC144 Introduction to Programming Using C Week 1 – Lesson 2

IPC144 Introduction to Programming Using C Week 1 – Lesson 2
Computer Engineering 1 nd Semester Dr. Rabie A. Ramadan 2.

Computer Engineering 1 nd Semester Dr. Rabie A. Ramadan 2.
Malware Dynamic Analysis Veronica Kovah vkovah.ost at gmail See notes for citation1

Malware Dynamic Analysis Veronica Kovah vkovah.ost at gmail See notes for citation1
CSE 232: C++ debugging in Visual Studio and emacs C++ Debugging (in Visual Studio and emacs) We’ve looked at programs from a text-based mode –Shell commands.

CSE 232: C++ debugging in Visual Studio and emacs C++ Debugging (in Visual Studio and emacs) We’ve looked at programs from a text-based mode –Shell commands.
Algorithms  Problem: Write pseudocode for a program that keeps asking the user to input integers until the user enters zero, and then determines and outputs.

Algorithms  Problem: Write pseudocode for a program that keeps asking the user to input integers until the user enters zero, and then determines and outputs.
Monday, Mar 31, 2003Kate Gregory with material from Deitel and Deitel Week 12 Labs 4 and 5 are back File IO Looking ahead to the final.

Monday, Mar 31, 2003Kate Gregory with material from Deitel and Deitel Week 12 Labs 4 and 5 are back File IO Looking ahead to the final.
An Introduction to Programming with C++ Sixth Edition Chapter 14 Sequential Access Files.

An Introduction to Programming with C++ Sixth Edition Chapter 14 Sequential Access Files.

Similar presentations

Ads by Google