metasploit-framework/lib/metasm/samples/dasm-backtrack.rb

#!/usr/bin/env ruby
#    This file is part of Metasm, the Ruby assembly manipulation suite
#    Copyright (C) 2007 Yoann GUILLOT
#
#    Licence is LGPL, see LICENCE in the top-level directory


#
# quick demonstration that the disassembler's backtracker works
#

require 'metasm-shell'

puts <<EOS.encode.decode
.base_addr 0

; compute jump target
mov ebx, 0x12345678
mov eax, ((toto + 12) ^ 0x12345678)
xor eax, ebx
sub eax, 12

; jump
call eax

; trap
add eax, 42
; die, you vile reverser !
db 0e9h

; real target
toto:
mov eax, 28h
pop ebx
ret

EOS
New metasm git-svn-id: file:///home/svn/framework3/trunk@6429 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-29 07:30:54 +00:00			`#!/usr/bin/env ruby`
			`# This file is part of Metasm, the Ruby assembly manipulation suite`
			`# Copyright (C) 2007 Yoann GUILLOT`
			`#`
			`# Licence is LGPL, see LICENCE in the top-level directory`


			`#`
			`# quick demonstration that the disassembler's backtracker works`
			`#`

			`require 'metasm-shell'`

			`puts <<EOS.encode.decode`
			`.base_addr 0`

			`; compute jump target`
			`mov ebx, 0x12345678`
			`mov eax, ((toto + 12) ^ 0x12345678)`
			`xor eax, ebx`
			`sub eax, 12`

			`; jump`
			`call eax`

			`; trap`
			`add eax, 42`
			`; die, you vile reverser !`
			`db 0e9h`

			`; real target`
			`toto:`
			`mov eax, 28h`
			`pop ebx`
			`ret`

			`EOS`