sexta-feira, 21 de agosto de 2020

Vlang Binary Debugging

Why vlang? V is a featured, productive, safe and confortable language highly compatible with c, that generates neat binaries with c-speed, the decompilation also seems quite clear as c code.
https://vlang.io/

After open the binary with radare in debug mode "-d" we proceed to do the binary recursive analysis with "aaaa" the more a's the more deep analys.



The function names are modified when the binary is crafted, if we have a function named hello in a module named main we will have the symbol main__hello, but we can locate them quicly thanks to radare's grep done with "~" token in this case applied to the "afl" command which lists all the symbols.


Being in debug mode we can use "d*" commands, for example "db" for breakpointing the function and then "dc" to start or continue execution.


Let's dissasemble the function with "pD" command, it also displays the function variables and arguments as well, note also the xref "call xref from main"


Let's take a look to the function arguments, radare detect's this three 64bits registers used on the function.


Actually the function parameter is rsi that contains a testing html to test the href extraction algorithm.


The string structure is quite simple and it's plenty of implemented methods.




With F8 we can step over the code as we were in ollydbg on linux.


Note the rip marker sliding into the code.


We can recognize the aray creations, and the s.index_after() function used to find substrings since a specific position.


If we take a look de dissasembly we sill see quite a few calls to tos3() functions.
Those functions are involved in string initialization, and implements safety checks.

  • tos(string, len)
  • tos2(byteptr)
  • tos3(charptr)

In this case I have a crash in my V code and I want to know what is crashing, just continue the execution with "dc" and see what poits the rip register.



In visual mode "V" we can see previous instructions to figure out the arguments and state.


We've located the crash on the substring operation which is something like "s2 := s1[a..b]" probably one of the arguments of the substring is out of bounds but luckily the V language has safety checks and is a controlled termination:



Switching the basic block view "space" we can see the execution flow, in this case we know the loops and branches because we have the code but this view also we can see the tos3 parameter "href=" which is useful to locate the position on the code.



When it reach the substr, we can see the parameters with "tab" command.



Looking the implementation the radare parameter calculation is quite exact.


Let's check the param values:


so the indexes are from 0x0e to 0x24 which are inside the buffer, lets continue to next iteration,
if we set a breakpoint and check every iteration, on latest iteration before the crash we have the values 0x2c to 0x70 with overflows the buffer and produces a controlled termination of the v compiled process.





Related word


  1. Pentest Tools Open Source
  2. Hak5 Tools
  3. Hack Tools Pc
  4. Pentest Tools Github
  5. Hackrf Tools
  6. Tools Used For Hacking
  7. Hak5 Tools
  8. Hacker Tools Apk
  9. Pentest Tools Port Scanner
  10. Pentest Tools Linux
  11. Hacker Tools Hardware
  12. Hacker Hardware Tools
  13. How To Make Hacking Tools
  14. Computer Hacker
  15. Github Hacking Tools
  16. Hacker Techniques Tools And Incident Handling
  17. Android Hack Tools Github
  18. Hacker Tools
  19. Hacking Apps
  20. Install Pentest Tools Ubuntu
  21. Hacker Tools Free
  22. Hacker Tools Hardware
  23. Tools 4 Hack
  24. Pentest Tools
  25. Hack Website Online Tool
  26. Hack Tools Download
  27. Hack Website Online Tool
  28. Hacking Tools For Windows Free Download
  29. Hacking Tools Windows
  30. Hack Apps
  31. Hacker Security Tools
  32. Computer Hacker
  33. Game Hacking
  34. Hack App
  35. Hacker Tools Apk
  36. How To Make Hacking Tools
  37. New Hacker Tools
  38. Hacking Tools For Pc
  39. Easy Hack Tools
  40. Pentest Tools Bluekeep
  41. Tools For Hacker
  42. Hacking Tools For Beginners
  43. Nsa Hacker Tools
  44. Pentest Tools Framework
  45. Pentest Tools Find Subdomains
  46. Hack Tools Github
  47. How To Hack
  48. Pentest Tools Find Subdomains
  49. World No 1 Hacker Software
  50. Hacker Tools For Mac
  51. Pentest Tools Framework
  52. Tools 4 Hack
  53. Tools Used For Hacking
  54. Hacking Tools For Pc
  55. Pentest Tools Online
  56. Hacking Tools And Software
  57. Hack And Tools
  58. Hacker Tools Free
  59. Hacker Tools Free
  60. Hacking Tools For Windows 7
  61. Hack Rom Tools
  62. Hacking Tools For Windows 7
  63. Hacking Tools Github
  64. Pentest Tools Android
  65. Hacking Tools 2020
  66. Hack Tools Github
  67. Pentest Tools Bluekeep
  68. Hacker Tools Free
  69. Hacking Tools For Mac
  70. Pentest Tools Linux
  71. Pentest Tools Github
  72. Hacker Tools Free Download
  73. Hacker
  74. Pentest Tools Tcp Port Scanner
  75. Pentest Tools Online
  76. How To Make Hacking Tools
  77. Hacking Apps
  78. Hacker Tools Apk Download
  79. Hacker Tools Apk Download
  80. Hacker Hardware Tools
  81. Pentest Tools
  82. Hack Tools Github
  83. Pentest Tools Website
  84. Hacker Tools For Windows
  85. Hacker Tools Windows
  86. Pentest Tools List
  87. Hacking Tools For Pc
  88. Pentest Tools Framework
  89. How To Install Pentest Tools In Ubuntu
  90. Hacker Hardware Tools
  91. Hacking Tools Software
  92. Hacking Tools
  93. Pentest Tools Port Scanner
  94. Hackrf Tools
  95. Nsa Hack Tools Download
  96. Hack Tools Pc
  97. Hacker Tools For Ios
  98. Hack Tool Apk
  99. Hacking Tools For Mac
  100. Beginner Hacker Tools
  101. Pentest Tools Port Scanner
  102. Hack Tools For Games
  103. Pentest Tools Review
  104. Pentest Tools Framework
  105. How To Make Hacking Tools
  106. Pentest Tools Bluekeep
  107. Hack Tools Pc
  108. Pentest Tools Tcp Port Scanner
  109. Pentest Tools For Ubuntu
  110. Pentest Tools Alternative
  111. Hacker Tools Github
  112. Pentest Tools Bluekeep
  113. Nsa Hacker Tools
  114. Hack Apps
  115. Android Hack Tools Github
  116. Pentest Tools Free
  117. Pentest Recon Tools
  118. Hack Rom Tools
  119. Hacking Tools Windows 10
  120. Hacking Tools Github
  121. Pentest Tools Nmap
  122. Pentest Tools Framework
  123. Kik Hack Tools
  124. Hacking Tools For Beginners
  125. Hacking Tools For Windows Free Download
  126. Bluetooth Hacking Tools Kali
  127. Hacking Tools Pc
  128. Hacking Tools Download
  129. Hacking Tools 2020
  130. Hacker Tools Mac
  131. Hacker Tools Linux
  132. Hack Tools
  133. Pentest Tools Windows
  134. Tools For Hacker
  135. Ethical Hacker Tools
  136. World No 1 Hacker Software
  137. Tools Used For Hacking
  138. Hack Tools Pc
  139. Pentest Tools Linux
  140. Physical Pentest Tools
  141. Pentest Tools Website Vulnerability
  142. Hacker Security Tools
  143. Hacker Tools Hardware
  144. Hacking Tools For Kali Linux
  145. Nsa Hack Tools
  146. Hacking App
  147. Pentest Automation Tools
Postado por Henrique Schunck às 19:11

Nenhum comentário:

Postar um comentário

Assinar: Postar comentários (Atom)