调用 printf() 编辑可执行文件

发布于 2024-10-11 10:15:44 字数 692 浏览 2 评论 0原文

我正在尝试“破解”控制台程序，强制它显示某些内容。问题是我无法打印换行符 (\r\n)。使用反汇编程序，我找到了该位置并编辑了二进制文件：

push 4ad0eb46                      ; the string (let's pretend "Hi guys")
push 4ad0eb80                      ; and the format ("%s")
call near ds:[<&msvcrt.printf>]    ; call printf
jmp 4ad0eb4f                       ; skip data

; now here I coded the strings

mov ds:[4ad289ec],eax              ; and here the program resumes

正如我所说，我无法打印换行符。我尝试在格式字符串中编码 "\r\n" （因此它变成 "%s\r\n"，就像我在 C 中所做的那样）并打印“大家好\r\n”，并将其编码在字符串本身（使其成为 "Hi Guys\x13\x10"）并得到 "Hi Guys" 和两个奇怪的字符，可能是 0x13 和 0x10 的 ASCII 表示。

原文

I'm trying to "crack" a console program, forcing it to display something. The problem is I can't print a newline (\r\n).
With a disassebler I found the place and edited the binary:

push 4ad0eb46                      ; the string (let's pretend "Hi guys")
push 4ad0eb80                      ; and the format ("%s")
call near ds:[<&msvcrt.printf>]    ; call printf
jmp 4ad0eb4f                       ; skip data

; now here I coded the strings

mov ds:[4ad289ec],eax              ; and here the program resumes

As I said, I can't print a newline. I tried encode "\r\n" in the format string (so it becomes "%s\r\n", as I would do in C) and get printed "Hi guys\r\n", and encode it in the
string itself (making it "Hi guys\x13\x10") and get "Hi guys" and two strange characters, probably the ASCII representation of 0x13 and 0x10.

分享到QQ

分享到微博