hi guys I need help with the binary bomb lab phase 2 It looks like this Phase 1 defused How about the next one 1 2 3 4 5 6 Breakpoint 1, 0x000055555555538c in phase 2 () (gdb) run The program being debugged has been started already Start it from the beginning (y or n) n Program not restarted (gdb) disas Dump of assembler code for function phase 2 0x000055555555538c push rbp 0x000055555555538d push rbx 0x000055555555538e sub $0x28, rsp 0x0000555555555392 mov rsp, rsi 0x0000555555555395 callq 0x55555555599f 0x000055555555539a cmpl $0x0,( rsp) 0x000055555555539e jne 0x5555555553a7 0x00005555555553a0 cmpl $0x1,0x4( rsp) 0x00005555555553a5 je 0x5555555553ac 0x00005555555553a7 callq 0x555555555979 0x00005555555553ac mov rsp, rbx 0x00005555555553af lea 0x10( rbx), rbp 0x00005555555553b3 jmp 0x5555555553c3 0x00005555555553b5 callq 0x555555555979 0x00005555555553ba add $0x4, rbx 0x00005555555553be cmp rbp, rbx 0x00005555555553c1 je 0x5555555553cf 0x00005555555553c3 mov 0x4( rbx), eax 0x00005555555553c6 add ( rbx), eax 0x00005555555553c8 cmp eax,0x8( rbx) 0x00005555555553cb je 0x5555555553ba 0x00005555555553cd jmp 0x5555555553b5 Type for more, q to quit, c to continue without paging 0x00005555555553cf add $0x28, rsp 0x00005555555553d3 pop rbx 0x00005555555553d4 pop rbp 0x00005555555553d5 retq End of assembler dump (gdb) i r rax 0x555555559780 93824992253824 rbx 0x0 0 rcx 0xb 11 rdx 0x555555559780 93824992253824 rsi 0x1 1 rdi 0x555555559780 93824992253824 rbp 0x5555555566f0 0x5555555566f0 rsp 0x7fffffffe4d8 0x7fffffffe4d8 r8 0x55555555a67c 93824992257660 r9 0x7ffff7fc7540 140737353905472 r10 0x0 0 r11 0x7ffff7e35580 140737352258944 r12 0x5555555551c0 93824992235968 r13 0x7fffffffe5c0 140737488348608 r14 0x0 0 r15 0x0 0 rip 0x55555555538c 0x55555555538c eflags 0x206 PF IF cs 0x33 51 ss 0x2b 43 ds 0x0 0 es 0x0 0 fs 0x0 0 Type for more, q to quit, c to continue without paging gs 0x0

The Answer is in the image, click to view ...

Answered step by step

Verified Expert Solution

Link Copied!

Question

1 Approved Answer

Posted on Sep 24, 2024

hi guys I need help with the binary bomb lab phase 2. It looks like this Phase 1 defused. How about the next one? 1

hi guys I need help with the binary bomb lab phase 2. It looks like this

Phase 1 defused. How about the next one? 1 2 3 4 5 6

Breakpoint 1, 0x000055555555538c in phase_2 () (gdb) run The program being debugged has been started already. Start it from the beginning? (y or n) n Program not restarted. (gdb) disas Dump of assembler code for function phase_2: => 0x000055555555538c <+0>: push %rbp 0x000055555555538d <+1>: push %rbx 0x000055555555538e <+2>: sub $0x28,%rsp 0x0000555555555392 <+6>: mov %rsp,%rsi 0x0000555555555395 <+9>: callq 0x55555555599f 0x000055555555539a <+14>: cmpl $0x0,(%rsp) 0x000055555555539e <+18>: jne 0x5555555553a7 0x00005555555553a0 <+20>: cmpl $0x1,0x4(%rsp) 0x00005555555553a5 <+25>: je 0x5555555553ac 0x00005555555553a7 <+27>: callq 0x555555555979 0x00005555555553ac <+32>: mov %rsp,%rbx 0x00005555555553af <+35>: lea 0x10(%rbx),%rbp 0x00005555555553b3 <+39>: jmp 0x5555555553c3 0x00005555555553b5 <+41>: callq 0x555555555979 0x00005555555553ba <+46>: add $0x4,%rbx 0x00005555555553be <+50>: cmp %rbp,%rbx 0x00005555555553c1 <+53>: je 0x5555555553cf 0x00005555555553c3 <+55>: mov 0x4(%rbx),%eax 0x00005555555553c6 <+58>: add (%rbx),%eax 0x00005555555553c8 <+60>: cmp %eax,0x8(%rbx) 0x00005555555553cb <+63>: je 0x5555555553ba 0x00005555555553cd <+65>: jmp 0x5555555553b5 --Type for more, q to quit, c to continue without paging-- 0x00005555555553cf <+67>: add $0x28,%rsp 0x00005555555553d3 <+71>: pop %rbx 0x00005555555553d4 <+72>: pop %rbp 0x00005555555553d5 <+73>: retq End of assembler dump. (gdb) i r rax 0x555555559780 93824992253824 rbx 0x0 0 rcx 0xb 11 rdx 0x555555559780 93824992253824 rsi 0x1 1 rdi 0x555555559780 93824992253824 rbp 0x5555555566f0 0x5555555566f0 <__libc_csu_init> rsp 0x7fffffffe4d8 0x7fffffffe4d8 r8 0x55555555a67c 93824992257660 r9 0x7ffff7fc7540 140737353905472 r10 0x0 0 r11 0x7ffff7e35580 140737352258944 r12 0x5555555551c0 93824992235968 r13 0x7fffffffe5c0 140737488348608 r14 0x0 0 r15 0x0 0 rip 0x55555555538c 0x55555555538c eflags 0x206 [ PF IF ] cs 0x33 51 ss 0x2b 43 ds 0x0 0 es 0x0 0 fs 0x0 0 --Type for more, q to quit, c to continue without paging-- gs 0x0