Thanks for your awesome paper. I have been interested in learning more on RCE and have been held up by the fact that no one writes to the true entry level person. Your overview of registers was very well wrote.
I ran through the Hello World examples and had slight differences. I understand each disassembler will spit something different, I am wondering if you can tell me what is going on though. I m using gdb 6.6-debian.
Dump of assembler code for function main:
0x080483a0 <main+0>: lea 0x4(%esp),%ecx
0x080483a4 <main+4>: and $0xfffffff0,%esp
0x080483a7 <main+7>: pushl 0xfffffffc(%ecx)0x080483aa <main+10>: push %ebp
0x080483ab <main+11>: mov %esp,%ebp
0x080483ad <main+13>: push %ecx
0x080483ae <main+14>: sub $0x4,%esp
0x080483b1 <main+17>: movl $0x1,0x80495cc
0x080483bb <main+27>: call 0x8048374 <myprint>
0x080483c0 <main+32>: mov $0x0,%eax
0x080483c5 <main+37>: add $0x4,%esp
0x080483c8 <main+40>: pop %ecx
0x080483c9 <main+41>: pop %ebp
0x080483ca <main+42>: lea 0xfffffffc(%ecx),%esp
0x080483cd <main+45>: ret
End of assembler dump.
The first three lines are where I am confused. I read about load effective address, but I don't know what it is loading.
Also in myprint(), I am using:
0x0804838b <myprint+23>: call 0x80482bc <puts@plt>
I understand this is the print statement although do you have any input on puts vs print?
Thanks for the awesome paper, when is part two coming out?
Ethical Hacking : Metasploit and pivoting
