{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Melony? 的问题《Using Ptrace to track the location of files being》','https://www.manongdao.com/q-703379.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I was using the following code which actually gets me the contents in the registers (eax, ebx, ecx) whenever a open system call is called. Now after a lot of struggle I understood what the values signify from this Question.
ebx contains the pointer to filename. But when I try to access it I was getting a segmentation fault. Where am I going wrong?
The code can be accessed from the here
相关问题
- Multiple sockets for clients to connect to
- Do the Java Integer and Double objects have unnece
- Is shmid returned by shmget() unique across proces
- What is the best way to do a search in a large fil
- glDrawElements only draws half a quad
Every process has its own address space. An address obtained from another process will not be valid in yours. One way to read memory in the other process would be to use
PTRACE_PEEKDATA. On Linux, another way would be to open/proc/<pid>/mem, seek to the address, and read from it like a file.