

PWN

反汇编

• IDA Pro 6.8 Green

调试

• peda

  Installation

  git clone https://github.com/longld/peda.git ~/peda
  echo "source ~/peda/peda.py" >> ~/.gdbinit
  echo "DONE! debug your program with gdb and enjoy"
  

  截至 2016 年 12 月 27 日 master 分支打包

Patch

• Fentanyl

  IDA Python 脚本，用于快速 patch。

  截至 2016 年 12 月 27 日 master 分支打包

  Usage

  Loading Fentanyl.py

  1. Alt+F7 or File > Script File to load scripts
  2. Browse to main.py and open it
  3. That's it!

  Key Bindings

  Some of these keybindings can be accessed by right-clicking on the screen in graph view.

  • Alt-N Convert instructions to nops
  • Alt-X Nop all xrefs to this function
  • Alt-J Invert conditional jump
  • Alt-P Patch instruction
  • Alt-Z Undo modification (Won't always work. Should still be careful editing.)
  • Alt-Y Redo modification (Won't always work. Should still be careful editing.)
  • Alt-S Save file
  • Alt-C Find Code Caves
  • Ctrl-Alt-F Make jump unconditional
  • Ctrl-Alt-N Neuter the binary (remove calls to fork, setuid, setgid, getpwnam, setgroups, and chdir)