aljaz/securedorg.github.io
1
0
Fork 0
mirror of https://github.com/aljazceru/securedorg.github.io.git synced 2026-01-26 01:24:21 +01:00
Code Issues Packages Projects Releases Wiki Activity

adding more static analysis

Browse Source
This commit is contained in:
Amanda Rousseau
2017-03-24 17:59:03 -07:00
parent dbe4bb1604
commit c9b764d7b7
2 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
static.md
View File

@@ -121,8 +121,10 @@ It's easy to trace back through the program disassembly, but let's look at some
**Jump Examples**
![alt text](https://securedorg.github.io/images/static9.gif "jz jump")
```assembly
jz loc_401975 ; jump too offset 401975 if the previous condition is zero
jz loc_401962 ; jump too offset loc_401962 if the previous condition is zero
```
```assembly
@@ -131,7 +133,7 @@ jle short loc_401634 ; jump to relative offset 401634 if the previous condition
Next scroll down through and find the order of API function calls in the program. You should make note of all the function offsets.
![alt text](https://securedorg.github.io/images/static7.gif "program scrolling")
![alt text](https://securedorg.github.io/images/static8.gif "program scrolling")
Some of the more interesting API Calls from the image above. Look up what each function does, many are self explanatory.