x86 - List parameters to a function from binary executable -

-

i'm looking analysis on binary executable of program create list of parameters specific function call. can use ollydbg find list of calls function, don't see show parameters without executing code.

it looks function takes 2 parameters, each supplied simple push directly before call in each instance. can use distorm pore on code single instance, i'd prefer more general solution can use elsewhere. ollydbg seem know number of parameters when stepping function, i'd think it's possible determine number of parameters through static analysis, understanding of x86 assembly limited.

is there existing way this, or option use distorm , grab last 2 push statements before each call function?

the way think of doing going through function , checking references ebp.

in function prolog, typically see:

push ebp mov  ebp, esp sub  esp,n

this new function stack frame being set up. bit this

ebp+n -> arg n          ... ebp+8 -> arg 0          return address ebp   -> stack address ebp-4 -> local var 0          ... ebp-n -> local var n esp   ->

you can number of arguments examining references ebp + (n>=8) within given function.

now, examine number of push instructions preceding function call there no guarantee function not reference other parts of stack.

ida pretty job of calculating function arguments. suggest give go! you'll see this:

.text:00022042                   ; int __stdcall sub_22042(ushort, char, char) .text:00022042                   sub_22042 proc near     ; code xref: sub_21dc4+73p .text:00022042                                           ; sub_22524+37p .text:00022042 .text:00022042                   arg_0= word ptr  8 .text:00022042                   arg_4= byte ptr  0ch .text:00022042                   arg_8= byte ptr  10h .text:00022042 .text:00022042 8b ff                mov     edi, edi .text:00022044 55                   push    ebp ...

Comments

Post a Comment

Popular posts from this blog

java - Run a .jar on Heroku -

-
i trying run .jar file on heroku, , can't find instructions anywhere on how this. have read wants me compile uploading heroku. possible, , if is, how this? if helps, trying run minecraft craftbukkit server, , don't have pom.xml file yet. you didn't provide details i'll try give , people reaches question way it. first of all, create heroku account , create heroku application (assumed have done that). second, need generate application jar , upload heroku. so, open terminal , install heroku cli (assuming unix terminal): $ sudo npm install -g heroku-cli you need have npm , nodejs installed, can check link: https://www.digitalocean.com/community/tutorials/how-to-install-node-js-on-ubuntu-16-04 once done that, can use npm update node version acceptable heroku-cli: $ sudo npm install -g n $ sudo n 7.10.0 and run: $ sudo npm install -g heroku-cli in order deploy jars, need install deploy plugin: $ sudo heroku plugins:install heroku-cli-deploy ...
Read more

java - Jtable duplicate Rows -

-
Image
when add new rows in jtable duplicate rows many times this method update jtable public final void tableaucomande(){ ((defaulttablemodel)tabcommande.getmodel()).getdatavector().clear(); session s=hibernateutil.getsessionfactory().opensession(); criteria cr1= s.createcriteria(commande.class); list <commande> lcs=cr1.list() ; criteria cr2= s.createcriteria(lignecommande.class); list <lignecommande> lck=cr2.list() ; if(lcs.size()!=0 && lck.size()!=0) { (commande lc:lcs) { for(lignecommande lig:lck){ ((defaulttablemodel)tabcommande.getmodel()).addrow(new object[]{ lc.getid_cmd(),lc.getnumcmd(),lc.getdate_cmd(),lc.getclient().getnomprenom(), lig.getproduit().getlib_prd(),lig.getquantite(),lig.getproduit().getid_prd() }); } } // tabcommande.setrowselectioninterval(tabcommande.getrowcount()-1,tabcommande.getrowcount()-1); } } this code add add data rows displaye...
Read more

validation - How to pass paramaters like unix into windows batch file -

-
i need pass various parameters .cmd file unix format file.cmd -configuration=value -source=value -flag but, try this: startlocal @echo off cls setlocal set cmdline=%* set configuration= set source= set badargs= set validation= goto main :splitargs echo splitargs(%*) if "%*" neq "" ( /f "tokens=1,2,* delims== " %%i in ("%*") call :assignkeyvalue %%i %%j & call :splitargs %%k ) goto :eof :assignkeyvalue echo assignkeyvalue(%1, %2) if /i %1==-configuration ( set configuration=%2 ) else if /i %1==-source ( set source=%2 ) else ( rem append unrecognised [key,value] badargs echo unknown key %1 set badargs=%badargs%[%1, %2] ) goto :eof :validate echo validating set validation=fail if defined configuration ( echo -configuration ok if defined source ( echo -source ok if not defined badargs ( set validation=success ) ) ) goto :eof :main cl...
Read more