Skip to content

Instantly share code, notes, and snippets.

View dbwodlf3's full-sized avatar
๐Ÿข
I may be slow to respond.

Cogi dbwodlf3

๐Ÿข
I may be slow to respond.
33 followers · 83 following
  • SWLAB
  • Republic of Korea
View GitHub Profile
@dbwodlf3
dbwodlf3 / test.md
Created July 17, 2020 11:19
test

ํ•˜์ž‰. ํ•˜์ž‰ ์Œ.

@dbwodlf3
dbwodlf3 / get_cfg.py
Last active July 17, 2020 05:48
disass.py
#https://github.com/lifting-bits/mcsema/blob/940ccd5357c5a6758203b70e5332b69d662412ff/tools/mcsema_disass/ida7/get_cfg.py#L1507
if __name__ == "__main__":
parser = argparse.ArgumentParser()
parser.add_argument(
"--log_file",
type=argparse.FileType('w'),
default=sys.stderr,
@dbwodlf3
dbwodlf3 / test.c
Last active July 16, 2020 07:53
mcsemaissue, undefined reference to `main'
#include <stdio.h>
#include <sys/mman.h>
#include <unistd.h>
#include <stdint.h>
#include <string.h>
int getMemoryPermission(void*);
void smcInit(void*);
int main(){
@dbwodlf3
dbwodlf3 / smc0.x86.s
Created July 10, 2020 02:14
section .text
global _start
_start:
mov ah, 0xb8
mov [_modified], ah
mov ah, 0x01
mov [_modified+1], ah
mov ah, 0x00
mov [_modified+2], ah
mov ah, 0x00
@dbwodlf3
dbwodlf3 / anvill.example.md
Created June 30, 2020 10:49 
anvill-decompile-json-9.0 --spec big_mul.json --ir_out big_mul.ll
target datalayout = "e-m:e-p:32:32-f64:32:64-f80:32-n8:16:32-S128"
target triple = "i386-pc-linux-gnu-elf"

%struct.Memory = type opaque
%struct.State = type { %struct.ArchState, [32 x %union.VectorReg], %struct.ArithFlags, %union.anon, %struct.Segments, %struct.AddressSpace, %struct.GPR, %struct.X87Stack, %struct.MMX, %struct.FPUStatusFlags, %union.anon, %union.FPU, %struct.SegmentCaches }
@dbwodlf3
dbwodlf3 / remill-lift-9.0.example.md
Last active June 30, 2020 10:47 
section .data
hello_string db "Hello World!", 0x0d, 0x0a
hello_string_len equ $ - hello_string

section .text
global _start

_start:
	mov eax, 4 ; eax <- 4, syscall number (print) But, never execute.
@dbwodlf3
dbwodlf3 / anvill.json.spec.md
Last active June 29, 2020 08:20

specification

  • arch
  • os
  • functions
    • name
    • address
    • parameters
    • return_address
  • return_values
@dbwodlf3
dbwodlf3 / liftingErr1.md
Created June 11, 2020 04:56
Lifting Err

#step 1, c source file

//helloWorld.c
#include<stdio.h>

int main(){
	printf("Hello World!\n");
	return 0;
}
@dbwodlf3
dbwodlf3 / TODO.md
Last active June 27, 2020 23:37
todo list for smc analysis

Todo

LLVM

  • LLVM IR ๋ฌธ๋ฒ• ์ •๋ฆฌ ๋ณด๊ณ ์„œ ์ž‘์„ฑํ•˜๊ธฐ
  • LLVM Tutorial ์ €์žฅ์†Œ์˜ Example ์ฑ„์šฐ๊ธฐ
  • Windows ํ™˜๊ฒฝ์—์„œ ์ˆ˜ํ–‰

Lifting

@dbwodlf3
dbwodlf3 / add-to-existing-namespaces.js
Created May 20, 2020 04:30 — forked from idettman/add-to-existing-namespaces.js
JavaScript: JSDoc Advanced Tips
/* https://leahayes.wordpress.com/2011/08/28/documenting-javascript-with-jsdoc3/
Namespaces can still be documented when a more abstract mechanism is used. @lends allows members to be added to an existing namespace:
*/
/**
* Root namespace
* @namespace root
*/
$namespace('root', /** @lends root **/ {
/**