All Questions
8
questions
3
votes
1
answer
421
views
What is the ELF .got section used for?
I'm trying to learn how GOT/PLT works in ELF binaries. The way I see it - there's three sections; .got, .plt and .got.plt.
When the program tries to call an imported function which is lazy binded, it ...
1
vote
0
answers
92
views
determine the PC of code gadgets in PLT section of ELF file
I am trying to parse an ELF file using custom code. With reference to the image below (output displayed is from objdump), I need to get the address of code gadget starting at , for example 401030 for ...
4
votes
1
answer
8k
views
Dumping the GOT with gdb at run time
I want to see how the plt stubs are being resolved at run time when lazy linking is used and how the GOT is changed along the way. How can I dump the GOT with gdb?
3
votes
1
answer
264
views
Enumerating (name, addresses) in PLT of an ELF file without elf.h
I want to show users imported symbols of a given ELF file like this(#1) in a disassembler project.(Android app)
1d21a: f7fa e8e8 blx 173ec ; __android_log_print@plt ...
Currently, I can only show ...
4
votes
1
answer
5k
views
ELF: How to make IDA show me the correct PLT (Procedure Linkage Table) content?
I would like to make IDA disassemble the .plt section of ELF files correctly, e.g. as objdump does:
objdump -D -M intel asdf | grep "Disassembly of section .plt" -A80
I don't know why but IDA gives ...
3
votes
3
answers
888
views
Patching PLT entries
I was reading this CTF write up and wanted to know more than the author cared to explain.
I actually just patched the PLT entries of getenv(), ptrace() and sleep(), as sleeps get pretty annoying ...
3
votes
1
answer
4k
views
ELF link_map when linked as RELRO
When linking a binary with -Wl,-z,relro,-z,now, all relocations are performed at start-up before passing control to the binary.
Because of this, there is no need for the .got.plt segment. Normally, ...
5
votes
1
answer
1k
views
Associating Symbol Names with .PLT Entries
Doing some messing around with ELF (of both the x86 and ARM varieties).
Associating symbol names with entries in the .got section is straightforward. Find the .got section, find the relocation ...