assembly - How do I link this execlp program using ld in Windows? -


i'm using gas mingw (gcc, as, , ld specific) compile following to-be shellcode in windows...

    .text     .globl _main     .def   _main; .scl 2; .type 32; .endef     #.extern _execlp     .def   _execlp; .scl 2; .type 32; .endef _main:     push  %ebp     movl  %esp, %ebp     pushl $0     pushl $0x00657865     pushl $0x2e646d63     call  _execlp     movl  %ebp, %esp     pop   %ebp

that compiles fine using...

as -o ex.o ex.s

where ex.s assembly source file.

but during linking...

ld -o ex.exe ex.o

it gives error...

ex.o:fake:(.text+0x10): undefined reference 'execlp'

so tried make extern putting...

.extern _execlp

...above definition (the comment).

meanwhile had .c file code (which generated ex.s file (using gcc -s -m32 -o ex.s ex.c))...

#include <process.h> int main(int argc, char *argv[]) {    execlp("cmd.exe", 0);    return 0; }

when compiled with...

gcc -o exc.exe exc.c

where exc.c c file. compiles , runs desired functionality... used dependency walker find dll's used exc.exe , found kernel32.dll, ntdll.dll, , msvcrt.dll being used. msvcrt important because c runtime library (which contains execlp). tried link ex.o so...

ld -lkernel32 -lndtll -lmsvcrt -o ex.exe ex.o

...with

.extern _execlp

...defined within source file (ex.s) comment is.

it generated same linking error above...

what doing wrong?

you need use 2 underscores , list libraries after object file. also, pass arguments wrong. works me:

    .globl _main _main:     push  %ebp     movl  %esp, %ebp     pushl $0x00657865     pushl $0x2e646d63     pushl $0     lea 4(%esp), %eax     pushl %eax     call  __execlp

assembled with: as -o ex.o ex.s

linked with: ld -o ex.exe ex.o -lkernel32 -lmsvcrt


-

Popular posts from this blog

Apache NiFi ExecuteScript: Groovy script to replace Json values via a mapping file -

i working apache nifi 0.5.1 on groovy script replace incoming json values ones contained in mapping file. mapping file looks (it simple .txt): header1;header2;header3 a;some text;a2 i have started following: import groovy.json.jsonbuilder import groovy.json.jsonslurper import java.nio.charset.standardcharsets def flowfile = session.get(); if (flowfile == null) { return; } flowfile = session.write(flowfile, { inputstream, outputstream -> def content = """ { "field1": "a" "field2": "a", "field3": "a" }""" def slurped = new jsonslurper().parsetext(content) def builder = new jsonbuilder(slurped) builder.content.field1 = "a" builder.content.field2 = "some text" builder.content.field3 = "a2" outputstream.write(builder.toprettystring().ge...
Read more

node.js - How do I prevent MongoDB replica set from querying the primary? -

read-operations-only: is there way have mongodb replica set, make mongodb instance on box connected to, mongodb gets queried? i have 3 ec2 instances behind aws load balancer. on each ec2 instance runs mongodb, part of replica set. i have express endpoints on nodejs , connect replica set follows mongodb.mongoclient.connect('mongodb://1.1.1.1,2.2.2.2,3.3.3.3.', function (err, db) { if (err) { complete('{}'); } else { i distribute load of queries evenly across 3 instances of mongodb replica set instead of default having queries routed ec2 instance primary mongodb defined, because destroys point of load balancer (which balance load of queries across 3 instances evenly). my understanding when connecting mongodb replica set, primary instance selected unless primary instance down, , therefore purpose of every secondary instance serve backup. in example people call hot,cold,cold. because there 2...
Read more