- Moon Nazis be trippin' in new theatrical trailer for IRON SKY
- Stake Land's Jim Mickle to remake Mexican cannibal flick WE ARE WHAT WE ARE
- Review of the Eric Bilodeau's cyberpunk zombie flick HUNTING GROUNDS
- Maria has a death wish in Marcel Grant’s MONSIEUR FRANCOIS trailer
- PUSHER pushes forward with new poster and first images
- Promo video for steampunk animation UN MONDE TRUQUE (A FAKE WORLD)
- THE END says stay positive in the apocalypse
- DVD Review: Style overshadows heart in spunky comedy SPORK
- J.J. Abrams sells new apocalypse show that sounds like the Emberverse series
- Review of quiescent arthouse gangster film The Road to Nod
- Prepare yourself for the apocalypse
- Female Prisoner No. 701: Sasori
- Re: Japanese zombie movies (2011-12 round-up)
- Re: Life Is Dead
- Balkans war revenge movie - Nicolas Cage?
- PA Film Archive
- i kill
- Re: Life Is Dead
- Monster Killer
- zombie films
- APOCALYPSE PIZZA VIDEO delivers during the zombie apocalypse!
- Concept art for Enki Bilal's next is PA animation ANIMAL'Z
- Trailer for ZOMBIE MURDER EXPLOSION DIE! All 4 of these in every episode!
- Wandering madly in the remnants of civilization in Greece's HIGUITA (teaser)
- THE HOST director's English language debut SNOW PIERCER adds cast
- Argentina invaded by NEWMEDIA aliens
- THE DIVIDE movie review
- THE RIDER still rides! New teaser reveals stunning final animation style
- EXCLUSIVE: Trailer for RAMPAGE IN HEAVEN sees The Monkey King and mech in a nightmarish dying world
- Sony could back Seth Rogan's THE APOCALYPSE (Jay and Seth vs. The Apocalypse)
- Russia's snowed under with zombies in WINTER OF THE DEAD
- SLAMDANCE 2012: Review of SUNDOWNING
- SLAMDANCE 2012: Review of killer tattoo thriller COMFORTING SKIN
- DVD Review: Style overshadows heart in spunky comedy SPORK
- DVD Review: Daniel Craig loses his mind in mediocre DREAM HOUSE
- SUNDANCE 2012: Review of EXCISION
- SUNDANCE 2012: Review of THE PACT
- SUNDANCE 2012: Review of GRABBERS
- SUNDANCE 2012: Review of SAFETY NOT GUARANTEED
- SUNDANCE 2012: Review of the visionary BEASTS OF THE SOUTHERN WILD
- SUNDANCE 2012: Review of (Radio Shack) ROBOT AND FRANK
- Stills for Korean android omnibus DOOMSDAY BOOK
- Trailer for muse EDDIE THE SLEEPWALKING CANNIBAL
- New on Blu-ray and DVD: Drive! The Thing! In Time!
- EXCLUSIVE: Trailer for 70s poltergeist flick WHEN THE LIGHTS WENT OUT
- SLAMDANCE 2012: Review of killer tattoo thriller COMFORTING SKIN
- Trailer for ZOMBIE MURDER EXPLOSION DIE! All 4 of these in every episode!
- Trailer for DEAD SHADOWS - Is there some Lovecraft influence?
- Jim Jarmusch making vampire flick ONLY LOVERS LEFT ALIVE
- Will you see this film? Teaser poster for RESIDENT EVIL: RETRIBUTION
- DVD Review: Style overshadows heart in spunky comedy SPORK
- DVD Review: Daniel Craig loses his mind in mediocre DREAM HOUSE
- Zombie bigots abound in DAVE OF THE DEAD
- Douche bags are target practice in GOD BLESS AMERICA trailer
- SUNDANCE 2012: Review of EXCISION
- SUNDANCE 2012: Review of THE PACT
- SUNDANCE 2012: Review of GRABBERS
- EXCLUSIVE: Researching life after death in random data patterns in APOPHENIA (APOFANIA) (trailer)
- Willem Dafoe is THE HUNTER
- SUNDANCE 2012: Review of SAFETY NOT GUARANTEED
- THE WALKING DEAD teases a dire, breakneck return
Jack In
Latest Comments
Latest Forum Posts
PA News
Latest Reviews
Older News
Film Festivals
Berlin International Film Festival (Berlinale)
Feb 09 - Feb 19
Berlin, Germany
Boston Underground Film Festival
Mar 24 - Mar 31
Boston, Massacheusets
Yubari International Fantastic Film Festival
Feb 23 - Feb 27
Yūbari, Hokkaidō, Japan
Cinequest Film Festival
Feb 28 - Mar 11
San Jose, California
South by Southwest (SXSW)
Mar 09 - Mar 17
Austin, Texas
Staff
Don Neumann aka quietearth
Editor in Chief
Fort Collins/Denver, Colorado
agentorange
Managing Editor
Edmonton, Alberta
Marina Antunes
Assistant Managing Editor
Vancouver, British Columbia
projectcyclops
UK Correspondent
Edinburgh, Scotland
Rick McGrath
Toronto Correspondent
Toronto, Ontario
The Crystal Ferret
France Correspondent
Paris, France
rochefort
Austin Correspondent
Austin, Texas
kilowog
LA Correspondent
Los Angeles, California
Joao Fleck
South American Correspondent
Porto Alegre, Brazil
quietearth [General News 06.06.07]
DISCLAIMER: This is for informational purposes only. I am not responsible for what anyone does with this information.
Ok, so we have a linux binary, and you start it up, but it gives you a message like "You cannot run this program" and exits. Dang. Well one way to go about getting around this is our friend objdump.
First let's find the offset of the "You cannot run this program" message. (note: older objdump options may be different)
# objdump -s program > out1Which produces something like this, so we look through and find our offset:
80fb330 58585800 596f7520 63616e6e 6f742072 XXX.You cannot r
80fb340 756e2074 68697320 70726f67 72616d2e un this program.
80fb350 58585858 58585858 58585858 58585858 XXXXXXXXXXXXXXXX
80fb360 58585858 58585858 58585858 58585858 XXXXXXXXXXXXXXXXNow we can see that the message offset starts at 0x80fb334. Ok now let's look for this string in the code. We're going to break it down into assembly.
# objdump -d program > out2Now let's look for 80fb334.
8020b4b: 75 29 jne 0x8041a92
8020b4d: c7 44 24 08 c5 19 24 movl $0x82419c5,0x8(%esp,1)
8020b54: 08
8020b55: 89 5c 24 04 mov %ebx,0x4(%esp,1)
8020b59: c7 04 24 34 b3 0f 08 movl $0x80fb334,(%esp,1)Now what's key here is the most recent jump BEFORE the string is accessed, and as you can see it's a jne, jump if not equal. So we load up a hex editor, I like to use khexedit (the KDE hex editor), and we need to search by hexadecimal so we can get close to the routine.
We search for "c7 44 24 08 c5 19 24" that way we know that the "75 29" which is the jne is right before. Now if you don't know assembly, you can look around in the file "out2" which is our assembly output and find the value of a "je", that is jump if equal. The value for je is 74, so all we do is change the 75 to a 74 and voila we're done. The program now runs because we told it to do the opposite when it was doing whatever checking. Now you're program might be a bit more complicated then that, so you can use the likes of ltrace which traces library calls, and also add in the -S option to display system calls as well.
If anyone has any other ways to do this, or any more information, please post!
Leave a comment
Related articles
