Commit f7fe99e0 authored by Ines Kramer's avatar Ines Kramer

try to fix code in readme

parent b5fabb43
# Reverse Engineering
#### Beginners
Get started with [TUT1] (./TUT1/README.md)
and [TUT2] (./TUT2/README.md)
Get started with [TUT1] (./TUT1/)
and [TUT2] (./TUT2/)
#### Advanced
......
......@@ -9,12 +9,12 @@
1. Use and check out options with man <command>:
file
readelf
strings
ldd
ltrace
strace
file
readelf
strings
ldd
ltrace
strace
2. Compile for 32 bit architecture
......@@ -26,11 +26,11 @@ Try compilation with gcc and -m32 parameter activated and 'strip example1' and t
Use:
objdump
objdump
or use gdb
disasssemble main
disasssemble main
### GDB
......@@ -43,27 +43,27 @@ or use gdb
1. Start gdb with binary
sudo gdb example1
sudo gdb example1
2. Have a look to the functions
info functions
info functions
3. Disassemble main function
dissamble main
dissamble main
4. Disassemble secret function and extract first address
dissamble secret
dissamble secret
5. Set a breakpoint to main function
break *main
break *main
6. Run program, should stop at break point of main functions
run
run
7. Modify program flow by changing instruction pointer to secret functions
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment