# HG changeset patch # User HackBot # Date 1473047078 0 # Node ID 12371ee6084b29d0feea8ef7369f5154a4d29c7c # Parent 7a0b2129676f2c7a91b2922e9e6d4f1f9c63e468 ` objdump -d bin/something | paste diff -r 7a0b2129676f -r 12371ee6084b paste/paste.15531 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/paste/paste.15531 Mon Sep 05 03:44:38 2016 +0000 @@ -0,0 +1,330 @@ + +bin/something: file format elf64-x86-64 + + +Disassembly of section .init: + +00000000004004a8 <_init>: + 4004a8: 48 83 ec 08 sub $0x8,%rsp + 4004ac: e8 ab 00 00 00 callq 40055c + 4004b1: 48 83 c4 08 add $0x8,%rsp + 4004b5: c3 retq + +Disassembly of section .plt: + +00000000004004c0 : + 4004c0: ff 35 42 0d 20 00 pushq 0x200d42(%rip) # 601208 <_GLOBAL_OFFSET_TABLE_+0x8> + 4004c6: ff 25 44 0d 20 00 jmpq *0x200d44(%rip) # 601210 <_GLOBAL_OFFSET_TABLE_+0x10> + 4004cc: 0f 1f 40 00 nopl 0x0(%rax) + +00000000004004d0 : + 4004d0: ff 25 42 0d 20 00 jmpq *0x200d42(%rip) # 601218 <_GLOBAL_OFFSET_TABLE_+0x18> + 4004d6: 68 00 00 00 00 pushq $0x0 + 4004db: e9 e0 ff ff ff jmpq 4004c0 <_init+0x18> + +00000000004004e0 <__libc_start_main@plt>: + 4004e0: ff 25 3a 0d 20 00 jmpq *0x200d3a(%rip) # 601220 <_GLOBAL_OFFSET_TABLE_+0x20> + 4004e6: 68 01 00 00 00 pushq $0x1 + 4004eb: e9 d0 ff ff ff jmpq 4004c0 <_init+0x18> + +00000000004004f0 : + 4004f0: ff 25 32 0d 20 00 jmpq *0x200d32(%rip) # 601228 <_GLOBAL_OFFSET_TABLE_+0x28> + 4004f6: 68 02 00 00 00 pushq $0x2 + 4004fb: e9 c0 ff ff ff jmpq 4004c0 <_init+0x18> + +0000000000400500 : + 400500: ff 25 2a 0d 20 00 jmpq *0x200d2a(%rip) # 601230 <_GLOBAL_OFFSET_TABLE_+0x30> + 400506: 68 03 00 00 00 pushq $0x3 + 40050b: e9 b0 ff ff ff jmpq 4004c0 <_init+0x18> + +0000000000400510 : + 400510: ff 25 22 0d 20 00 jmpq *0x200d22(%rip) # 601238 <_GLOBAL_OFFSET_TABLE_+0x38> + 400516: 68 04 00 00 00 pushq $0x4 + 40051b: e9 a0 ff ff ff jmpq 4004c0 <_init+0x18> + +0000000000400520 : + 400520: ff 25 1a 0d 20 00 jmpq *0x200d1a(%rip) # 601240 <_GLOBAL_OFFSET_TABLE_+0x40> + 400526: 68 05 00 00 00 pushq $0x5 + 40052b: e9 90 ff ff ff jmpq 4004c0 <_init+0x18> + +Disassembly of section .text: + +0000000000400530 <_start>: + 400530: 31 ed xor %ebp,%ebp + 400532: 49 89 d1 mov %rdx,%r9 + 400535: 5e pop %rsi + 400536: 48 89 e2 mov %rsp,%rdx + 400539: 48 83 e4 f0 and $0xfffffffffffffff0,%rsp + 40053d: 50 push %rax + 40053e: 54 push %rsp + 40053f: 49 c7 c0 b0 07 40 00 mov $0x4007b0,%r8 + 400546: 48 c7 c1 c0 07 40 00 mov $0x4007c0,%rcx + 40054d: 48 c7 c7 79 07 40 00 mov $0x400779,%rdi + 400554: e8 87 ff ff ff callq 4004e0 <__libc_start_main@plt> + 400559: f4 hlt + 40055a: 90 nop + 40055b: 90 nop + +000000000040055c : + 40055c: 48 83 ec 08 sub $0x8,%rsp + 400560: 48 8b 05 91 0c 20 00 mov 0x200c91(%rip),%rax # 6011f8 <_DYNAMIC+0x1e0> + 400567: 48 85 c0 test %rax,%rax + 40056a: 74 02 je 40056e + 40056c: ff d0 callq *%rax + 40056e: 48 83 c4 08 add $0x8,%rsp + 400572: c3 retq + 400573: 90 nop + 400574: 90 nop + 400575: 90 nop + 400576: 90 nop + 400577: 90 nop + 400578: 90 nop + 400579: 90 nop + 40057a: 90 nop + 40057b: 90 nop + 40057c: 90 nop + 40057d: 90 nop + 40057e: 90 nop + 40057f: 90 nop + +0000000000400580 : + 400580: b8 67 12 60 00 mov $0x601267,%eax + 400585: 55 push %rbp + 400586: 48 2d 60 12 60 00 sub $0x601260,%rax + 40058c: 48 83 f8 0e cmp $0xe,%rax + 400590: 48 89 e5 mov %rsp,%rbp + 400593: 77 02 ja 400597 + 400595: 5d pop %rbp + 400596: c3 retq + 400597: b8 00 00 00 00 mov $0x0,%eax + 40059c: 48 85 c0 test %rax,%rax + 40059f: 74 f4 je 400595 + 4005a1: 5d pop %rbp + 4005a2: bf 60 12 60 00 mov $0x601260,%edi + 4005a7: ff e0 jmpq *%rax + 4005a9: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) + +00000000004005b0 : + 4005b0: b8 60 12 60 00 mov $0x601260,%eax + 4005b5: 55 push %rbp + 4005b6: 48 2d 60 12 60 00 sub $0x601260,%rax + 4005bc: 48 c1 f8 03 sar $0x3,%rax + 4005c0: 48 89 e5 mov %rsp,%rbp + 4005c3: 48 89 c2 mov %rax,%rdx + 4005c6: 48 c1 ea 3f shr $0x3f,%rdx + 4005ca: 48 01 d0 add %rdx,%rax + 4005cd: 48 89 c6 mov %rax,%rsi + 4005d0: 48 d1 fe sar %rsi + 4005d3: 75 02 jne 4005d7 + 4005d5: 5d pop %rbp + 4005d6: c3 retq + 4005d7: ba 00 00 00 00 mov $0x0,%edx + 4005dc: 48 85 d2 test %rdx,%rdx + 4005df: 74 f4 je 4005d5 + 4005e1: 5d pop %rbp + 4005e2: bf 60 12 60 00 mov $0x601260,%edi + 4005e7: ff e2 jmpq *%rdx + 4005e9: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) + +00000000004005f0 <__do_global_dtors_aux>: + 4005f0: 80 3d 69 0c 20 00 00 cmpb $0x0,0x200c69(%rip) # 601260 <__bss_start> + 4005f7: 75 11 jne 40060a <__do_global_dtors_aux+0x1a> + 4005f9: 55 push %rbp + 4005fa: 48 89 e5 mov %rsp,%rbp + 4005fd: e8 7e ff ff ff callq 400580 + 400602: 5d pop %rbp + 400603: c6 05 56 0c 20 00 01 movb $0x1,0x200c56(%rip) # 601260 <__bss_start> + 40060a: f3 c3 repz retq + 40060c: 0f 1f 40 00 nopl 0x0(%rax) + +0000000000400610 : + 400610: 48 83 3d f8 09 20 00 cmpq $0x0,0x2009f8(%rip) # 601010 <__JCR_END__> + 400617: 00 + 400618: 74 1b je 400635 + 40061a: b8 00 00 00 00 mov $0x0,%eax + 40061f: 48 85 c0 test %rax,%rax + 400622: 74 11 je 400635 + 400624: 55 push %rbp + 400625: bf 10 10 60 00 mov $0x601010,%edi + 40062a: 48 89 e5 mov %rsp,%rbp + 40062d: ff d0 callq *%rax + 40062f: 5d pop %rbp + 400630: e9 7b ff ff ff jmpq 4005b0 + 400635: e9 76 ff ff ff jmpq 4005b0 + 40063a: 90 nop + 40063b: 90 nop + +000000000040063c : + 40063c: 55 push %rbp + 40063d: 48 89 e5 mov %rsp,%rbp + 400640: 53 push %rbx + 400641: 48 83 ec 38 sub $0x38,%rsp + 400645: 48 89 7d c8 mov %rdi,-0x38(%rbp) + 400649: 48 8d 45 d8 lea -0x28(%rbp),%rax + 40064d: 48 89 c7 mov %rax,%rdi + 400650: b8 00 00 00 00 mov $0x0,%eax + 400655: e8 b6 fe ff ff callq 400510 + 40065a: 89 c7 mov %eax,%edi + 40065c: e8 8f fe ff ff callq 4004f0 + 400661: 48 c7 45 e8 00 00 00 movq $0x0,-0x18(%rbp) + 400668: 00 + 400669: e9 ee 00 00 00 jmpq 40075c + 40066e: 48 8b 45 e8 mov -0x18(%rbp),%rax + 400672: 48 8b 55 c8 mov -0x38(%rbp),%rdx + 400676: 48 01 d0 add %rdx,%rax + 400679: 0f b6 00 movzbl (%rax),%eax + 40067c: 88 45 e7 mov %al,-0x19(%rbp) + 40067f: e8 9c fe ff ff callq 400520 + 400684: 89 c1 mov %eax,%ecx + 400686: ba 93 24 49 92 mov $0x92492493,%edx + 40068b: 89 c8 mov %ecx,%eax + 40068d: f7 ea imul %edx + 40068f: 8d 04 0a lea (%rdx,%rcx,1),%eax + 400692: 89 c2 mov %eax,%edx + 400694: c1 fa 02 sar $0x2,%edx + 400697: 89 c8 mov %ecx,%eax + 400699: c1 f8 1f sar $0x1f,%eax + 40069c: 89 d3 mov %edx,%ebx + 40069e: 29 c3 sub %eax,%ebx + 4006a0: 89 d8 mov %ebx,%eax + 4006a2: 89 45 e0 mov %eax,-0x20(%rbp) + 4006a5: 8b 55 e0 mov -0x20(%rbp),%edx + 4006a8: 89 d0 mov %edx,%eax + 4006aa: c1 e0 03 shl $0x3,%eax + 4006ad: 29 d0 sub %edx,%eax + 4006af: 89 ca mov %ecx,%edx + 4006b1: 29 c2 sub %eax,%edx + 4006b3: 89 d0 mov %edx,%eax + 4006b5: 89 45 e0 mov %eax,-0x20(%rbp) + 4006b8: 83 7d e0 00 cmpl $0x0,-0x20(%rbp) + 4006bc: 75 17 jne 4006d5 + 4006be: 48 8b 05 93 0b 20 00 mov 0x200b93(%rip),%rax # 601258 + 4006c5: 48 83 c0 08 add $0x8,%rax + 4006c9: 48 89 05 88 0b 20 00 mov %rax,0x200b88(%rip) # 601258 + 4006d0: e9 82 00 00 00 jmpq 400757 + 4006d5: 83 7d e0 01 cmpl $0x1,-0x20(%rbp) + 4006d9: 75 14 jne 4006ef + 4006db: 48 8b 05 76 0b 20 00 mov 0x200b76(%rip),%rax # 601258 + 4006e2: 48 83 e8 08 sub $0x8,%rax + 4006e6: 48 89 05 6b 0b 20 00 mov %rax,0x200b6b(%rip) # 601258 + 4006ed: eb 68 jmp 400757 + 4006ef: 83 7d e0 02 cmpl $0x2,-0x20(%rbp) + 4006f3: 75 13 jne 400708 + 4006f5: 48 8b 05 5c 0b 20 00 mov 0x200b5c(%rip),%rax # 601258 + 4006fc: 48 8b 10 mov (%rax),%rdx + 4006ff: 48 83 c2 01 add $0x1,%rdx + 400703: 48 89 10 mov %rdx,(%rax) + 400706: eb 4f jmp 400757 + 400708: 83 7d e0 03 cmpl $0x3,-0x20(%rbp) + 40070c: 75 13 jne 400721 + 40070e: 48 8b 05 43 0b 20 00 mov 0x200b43(%rip),%rax # 601258 + 400715: 48 8b 10 mov (%rax),%rdx + 400718: 48 83 ea 01 sub $0x1,%rdx + 40071c: 48 89 10 mov %rdx,(%rax) + 40071f: eb 36 jmp 400757 + 400721: 83 7d e0 04 cmpl $0x4,-0x20(%rbp) + 400725: 75 13 jne 40073a + 400727: 48 8b 05 2a 0b 20 00 mov 0x200b2a(%rip),%rax # 601258 + 40072e: 48 8b 00 mov (%rax),%rax + 400731: 89 c7 mov %eax,%edi + 400733: e8 98 fd ff ff callq 4004d0 + 400738: eb 1d jmp 400757 + 40073a: 83 7d e0 05 cmpl $0x5,-0x20(%rbp) + 40073e: 75 13 jne 400753 + 400740: 48 8b 1d 11 0b 20 00 mov 0x200b11(%rip),%rbx # 601258 + 400747: e8 b4 fd ff ff callq 400500 + 40074c: 48 98 cltq + 40074e: 48 89 03 mov %rax,(%rbx) + 400751: eb 04 jmp 400757 + 400753: 83 7d e0 06 cmpl $0x6,-0x20(%rbp) + 400757: 48 83 45 e8 01 addq $0x1,-0x18(%rbp) + 40075c: 48 8b 45 e8 mov -0x18(%rbp),%rax + 400760: 48 8b 55 c8 mov -0x38(%rbp),%rdx + 400764: 48 01 d0 add %rdx,%rax + 400767: 0f b6 00 movzbl (%rax),%eax + 40076a: 84 c0 test %al,%al + 40076c: 0f 85 fc fe ff ff jne 40066e + 400772: 48 83 c4 38 add $0x38,%rsp + 400776: 5b pop %rbx + 400777: 5d pop %rbp + 400778: c3 retq + +0000000000400779
: + 400779: 55 push %rbp + 40077a: 48 89 e5 mov %rsp,%rbp + 40077d: 48 83 ec 10 sub $0x10,%rsp + 400781: 89 7d fc mov %edi,-0x4(%rbp) + 400784: 48 89 75 f0 mov %rsi,-0x10(%rbp) + 400788: 48 8b 45 f0 mov -0x10(%rbp),%rax + 40078c: 48 83 c0 08 add $0x8,%rax + 400790: 48 8b 00 mov (%rax),%rax + 400793: 48 89 c7 mov %rax,%rdi + 400796: e8 a1 fe ff ff callq 40063c + 40079b: b8 00 00 00 00 mov $0x0,%eax + 4007a0: c9 leaveq + 4007a1: c3 retq + 4007a2: 90 nop + 4007a3: 90 nop + 4007a4: 90 nop + 4007a5: 90 nop + 4007a6: 90 nop + 4007a7: 90 nop + 4007a8: 90 nop + 4007a9: 90 nop + 4007aa: 90 nop + 4007ab: 90 nop + 4007ac: 90 nop + 4007ad: 90 nop + 4007ae: 90 nop + 4007af: 90 nop + +00000000004007b0 <__libc_csu_fini>: + 4007b0: f3 c3 repz retq + 4007b2: 66 66 66 66 66 2e 0f data32 data32 data32 data32 nopw %cs:0x0(%rax,%rax,1) + 4007b9: 1f 84 00 00 00 00 00 + +00000000004007c0 <__libc_csu_init>: + 4007c0: 48 89 6c 24 d8 mov %rbp,-0x28(%rsp) + 4007c5: 4c 89 64 24 e0 mov %r12,-0x20(%rsp) + 4007ca: 48 8d 2d 37 08 20 00 lea 0x200837(%rip),%rbp # 601008 <__init_array_end> + 4007d1: 4c 8d 25 28 08 20 00 lea 0x200828(%rip),%r12 # 601000 <__frame_dummy_init_array_entry> + 4007d8: 4c 89 6c 24 e8 mov %r13,-0x18(%rsp) + 4007dd: 4c 89 74 24 f0 mov %r14,-0x10(%rsp) + 4007e2: 4c 89 7c 24 f8 mov %r15,-0x8(%rsp) + 4007e7: 48 89 5c 24 d0 mov %rbx,-0x30(%rsp) + 4007ec: 48 83 ec 38 sub $0x38,%rsp + 4007f0: 4c 29 e5 sub %r12,%rbp + 4007f3: 41 89 fd mov %edi,%r13d + 4007f6: 49 89 f6 mov %rsi,%r14 + 4007f9: 48 c1 fd 03 sar $0x3,%rbp + 4007fd: 49 89 d7 mov %rdx,%r15 + 400800: e8 a3 fc ff ff callq 4004a8 <_init> + 400805: 48 85 ed test %rbp,%rbp + 400808: 74 1c je 400826 <__libc_csu_init+0x66> + 40080a: 31 db xor %ebx,%ebx + 40080c: 0f 1f 40 00 nopl 0x0(%rax) + 400810: 4c 89 fa mov %r15,%rdx + 400813: 4c 89 f6 mov %r14,%rsi + 400816: 44 89 ef mov %r13d,%edi + 400819: 41 ff 14 dc callq *(%r12,%rbx,8) + 40081d: 48 83 c3 01 add $0x1,%rbx + 400821: 48 39 eb cmp %rbp,%rbx + 400824: 72 ea jb 400810 <__libc_csu_init+0x50> + 400826: 48 8b 5c 24 08 mov 0x8(%rsp),%rbx + 40082b: 48 8b 6c 24 10 mov 0x10(%rsp),%rbp + 400830: 4c 8b 64 24 18 mov 0x18(%rsp),%r12 + 400835: 4c 8b 6c 24 20 mov 0x20(%rsp),%r13 + 40083a: 4c 8b 74 24 28 mov 0x28(%rsp),%r14 + 40083f: 4c 8b 7c 24 30 mov 0x30(%rsp),%r15 + 400844: 48 83 c4 38 add $0x38,%rsp + 400848: c3 retq + 400849: 90 nop + 40084a: 90 nop + 40084b: 90 nop + +Disassembly of section .fini: + +000000000040084c <_fini>: + 40084c: 48 83 ec 08 sub $0x8,%rsp + 400850: 48 83 c4 08 add $0x8,%rsp + 400854: c3 retq