-
-
[原创]贴段代码,自己看有什么技巧,有点猥琐
-
发表于:
2011-4-6 14:13
5174
-
原代码是
GetCurrentThreadId
mov eax, dword ptr fs:[018h]
mov eax, dword ptr ds:[eax+024h]
仔细看下面的代码哦~
0040105F 83EC 04 sub esp, 4
00401062 0FA0 push fs
00401064 83C4 08 add esp, 8
00401067 33C0 xor eax, eax
00401069 40 inc eax
0040106A C1E0 02 shl eax, 2
0040106D 1E push ds
0040106E 83EC 04 sub esp, 4
00401071 40 inc eax
00401072 B9 03000000 mov ecx, 3
00401077 1F pop ds
00401078 8B4401 10 mov eax, dword ptr ds:[ecx+eax+10]
0040107C 0FA1 pop fs
0040107E C1E1 02 shl ecx, 2
00401081 83C0 08 add eax, 8
00401084 64:8B4401 10 mov eax, dword ptr fs:[ecx+eax+10]
00401089 1E push ds
0040108A 0FA0 push fs
0040108C 1F pop ds
0040108D 0FA1 pop fs
来张图看更加明显点
[课程]Linux pwn 探索篇!