Mirrors/exploitation-course
6
0
Fork 0
mirror of https://github.com/ashemery/exploitation-course synced 2024-06-28 09:53:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

Lab_01 fileS

Browse Source
This commit is contained in:
binary 2020-08-05 13:42:02 -04:00
parent 36fc5be022
commit 6d13f9378e
2 changed files with 27 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
labs/lab_01/Lab_01.txt Normal file
View File

@ -0,0 +1,27 @@
Analyze Windows PE File using CFF Explorer
01. What is the magic no. (DOS header) and signature (PE header) of the file?
02. For what architecture was this file built for and which entry gave you the answer?
03. What is the base address of the code section?
04. How many sections does this file have?
05. What is each section used for?
https://www.hexacorn.com/blog/2016/12/15/pe-section-names-re-visited/
06. Can you change a sections flag? How?
07. How many libraries is this file importing?
08. Do you know what functions are being imported?
09. Did you find any export table? Why do you think, no table was found?
10. What is the address of the entry point, and to what section it points?
Resources:
https://www.asciitohex.com/
Life of Binaries, opensecuritytraining.info
https://docs.microsoft.com/en-us/windows/win32/debug/pe-format

BIN
labs/lab_01/putty.exe.7z Normal file
View File

Binary file not shown.