How to print eax value with Radare2?How to print from pointers in radare2 in debug sessionHow to debug (like...

Inventor that creates machine that grabs man from future

Does Windows 10's telemetry include sending *.doc files if Word crashed?

How can I mix up weapons for large groups of similar monsters/characters?

Why didn't Eru and/or the Valar intervene when Sauron corrupted Númenor?

Is my plan for fixing my water heater leak bad?

Can a person refuse a presidential pardon?

Why is my solution for the partial pressures of two different gases incorrect?

Do any poskim exempt 13-20-year-olds from Mussaf?

How to satisfy a player character's curiosity about another player character?

Called into a meeting and told we are being made redundant (laid off) and "not to share outside". Can I tell my partner?

How do I add a variable to this curl command?

Which branches of mathematics can be done just in terms of morphisms and composition?

Quenching swords in dragon blood; why?

Eww, those bytes are gross

Why can I easily sing or whistle a tune I've just heard, but not as easily reproduce it on an instrument?

How can I make an algorithm in C++ for finding variations of a set without repetition (i.e. n elements, choose k)?

Why does the DC-9-80 have this cusp in its fuselage?

Why do members of Congress in committee hearings ask witnesses the same question multiple times?

How to acknowledge an embarrassing job interview, now that I work directly with the interviewer?

A Wacky, Wacky Chessboard (That Makes No Sense)

What is the meaning of "pick up" in this sentence?

Has the Isbell–Freyd criterion ever been used to check that a category is concretisable?

Predict mars robot position

What does a violin mute do?



How to print eax value with Radare2?


How to print from pointers in radare2 in debug sessionHow to debug (like gdb) with radare2?How to print from pointers in radare2 in debug sessionDumping binary with radare2How to debug a hang application with radare2?Split view radare2 print heapHow To Print Addresses in Radare2How do you print fixed width strings with radare's print format `pf`?grep -E with Radare2Disassembly - Why the CMP instruction is multiplying by 2 the value being comparedHow to print the value of register with Radare 2













2















I am solving a crack me challenge but I am stuck. The challenge executes several jne tests. The first test is the simpliest but I don't arrive to print the eax value to know the content of cmp instruction. According to this block of code :



|    ; DATA XREF from sym.main (0x804848e)

|    0x08048497      b88a55ea8b     mov eax, 0x8bea558a

|    0x0804849c      45             inc ebp

|    0x0804849d      f4             hlt

|    0x0804849e      83c004         add eax, 4

|    0x080484a1      8a00           mov al, byte [eax]

|    0x080484a3      38c2           cmp dl, al

|,=< 0x080484a5      753d           jne 0x80484e4


How can I print the eax value to understand what are compared in the instruction ?



0x080484a1 8a00 mov al, byte [eax]



According to this question, I tried the 0x080484a1 but when I enter the command pxr 1 @ eax+0x4, nothing appears. If I enter the command pxr @ eax+0x4, this code appears :



0x080c288c  0x6f6c6165  ealo ascii

0x080c2890  0x00796768  hgy. ascii


The ascii printed is linked with the string compared ksuiealohgy.






debugging radare2 debuggers







share|improve this question



























    2















    I am solving a crack me challenge but I am stuck. The challenge executes several jne tests. The first test is the simpliest but I don't arrive to print the eax value to know the content of cmp instruction. According to this block of code :



    |    ; DATA XREF from sym.main (0x804848e)
    
|    0x08048497      b88a55ea8b     mov eax, 0x8bea558a
    
|    0x0804849c      45             inc ebp
    
|    0x0804849d      f4             hlt
    
|    0x0804849e      83c004         add eax, 4
    
|    0x080484a1      8a00           mov al, byte [eax]
    
|    0x080484a3      38c2           cmp dl, al
    
|,=< 0x080484a5      753d           jne 0x80484e4


    How can I print the eax value to understand what are compared in the instruction ?



    0x080484a1 8a00 mov al, byte [eax]



    According to this question, I tried the 0x080484a1 but when I enter the command pxr 1 @ eax+0x4, nothing appears. If I enter the command pxr @ eax+0x4, this code appears :



    0x080c288c  0x6f6c6165  ealo ascii
    
0x080c2890  0x00796768  hgy. ascii


    The ascii printed is linked with the string compared ksuiealohgy.






    debugging radare2 debuggers







    share|improve this question

























      2












      2








      2








      I am solving a crack me challenge but I am stuck. The challenge executes several jne tests. The first test is the simpliest but I don't arrive to print the eax value to know the content of cmp instruction. According to this block of code :



      |    ; DATA XREF from sym.main (0x804848e)
      
|    0x08048497      b88a55ea8b     mov eax, 0x8bea558a
      
|    0x0804849c      45             inc ebp
      
|    0x0804849d      f4             hlt
      
|    0x0804849e      83c004         add eax, 4
      
|    0x080484a1      8a00           mov al, byte [eax]
      
|    0x080484a3      38c2           cmp dl, al
      
|,=< 0x080484a5      753d           jne 0x80484e4


      How can I print the eax value to understand what are compared in the instruction ?



      0x080484a1 8a00 mov al, byte [eax]



      According to this question, I tried the 0x080484a1 but when I enter the command pxr 1 @ eax+0x4, nothing appears. If I enter the command pxr @ eax+0x4, this code appears :



      0x080c288c  0x6f6c6165  ealo ascii
      
0x080c2890  0x00796768  hgy. ascii


      The ascii printed is linked with the string compared ksuiealohgy.






      debugging radare2 debuggers







      share|improve this question














      I am solving a crack me challenge but I am stuck. The challenge executes several jne tests. The first test is the simpliest but I don't arrive to print the eax value to know the content of cmp instruction. According to this block of code :



      |    ; DATA XREF from sym.main (0x804848e)
      
|    0x08048497      b88a55ea8b     mov eax, 0x8bea558a
      
|    0x0804849c      45             inc ebp
      
|    0x0804849d      f4             hlt
      
|    0x0804849e      83c004         add eax, 4
      
|    0x080484a1      8a00           mov al, byte [eax]
      
|    0x080484a3      38c2           cmp dl, al
      
|,=< 0x080484a5      753d           jne 0x80484e4


      How can I print the eax value to understand what are compared in the instruction ?



      0x080484a1 8a00 mov al, byte [eax]



      According to this question, I tried the 0x080484a1 but when I enter the command pxr 1 @ eax+0x4, nothing appears. If I enter the command pxr @ eax+0x4, this code appears :



      0x080c288c  0x6f6c6165  ealo ascii
      
0x080c2890  0x00796768  hgy. ascii


      The ascii printed is linked with the string compared ksuiealohgy.






      debugging radare2 debuggers




      debugging radare2 debuggers






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked 8 hours ago









      AnonymeAnonyme

      414




      414






















          1 Answer
          1






          active

          oldest

          votes


















          2














          Not sure why you used pxr as you could get the output with px 1 @ eax+0x4. But another options would be that you could run this opcode and then read the register value of al to get that. But in order to do that you need to use debugger commands instead (of course you need to be in debugging mode):



          [0x7f5953803e90]> dr?
          
Usage: dr   Registers commands
          
| dr                     Show 'gpr' registers
          
<snip>


          So to get the value of al execute during debugging session:



          [0x7f5953803e90]> dr al
          
0x00000090





          share|improve this answer























            Your Answer








            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "489"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: false,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: null,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            noCode: true, onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














            draft saved

            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2freverseengineering.stackexchange.com%2fquestions%2f20762%2fhow-to-print-eax-value-with-radare2%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            2














            Not sure why you used pxr as you could get the output with px 1 @ eax+0x4. But another options would be that you could run this opcode and then read the register value of al to get that. But in order to do that you need to use debugger commands instead (of course you need to be in debugging mode):



            [0x7f5953803e90]> dr?
            
Usage: dr   Registers commands
            
| dr                     Show 'gpr' registers
            
<snip>


            So to get the value of al execute during debugging session:



            [0x7f5953803e90]> dr al
            
0x00000090





            share|improve this answer




























              2














              Not sure why you used pxr as you could get the output with px 1 @ eax+0x4. But another options would be that you could run this opcode and then read the register value of al to get that. But in order to do that you need to use debugger commands instead (of course you need to be in debugging mode):



              [0x7f5953803e90]> dr?
              
Usage: dr   Registers commands
              
| dr                     Show 'gpr' registers
              
<snip>


              So to get the value of al execute during debugging session:



              [0x7f5953803e90]> dr al
              
0x00000090





              share|improve this answer


























                2












                2








                2







                Not sure why you used pxr as you could get the output with px 1 @ eax+0x4. But another options would be that you could run this opcode and then read the register value of al to get that. But in order to do that you need to use debugger commands instead (of course you need to be in debugging mode):



                [0x7f5953803e90]> dr?
                
Usage: dr   Registers commands
                
| dr                     Show 'gpr' registers
                
<snip>


                So to get the value of al execute during debugging session:



                [0x7f5953803e90]> dr al
                
0x00000090





                share|improve this answer













                Not sure why you used pxr as you could get the output with px 1 @ eax+0x4. But another options would be that you could run this opcode and then read the register value of al to get that. But in order to do that you need to use debugger commands instead (of course you need to be in debugging mode):



                [0x7f5953803e90]> dr?
                
Usage: dr   Registers commands
                
| dr                     Show 'gpr' registers
                
<snip>


                So to get the value of al execute during debugging session:



                [0x7f5953803e90]> dr al
                
0x00000090






                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered 6 hours ago









                Paweł ŁukasikPaweł Łukasik

                2,4461520




                2,4461520






























                    draft saved

                    draft discarded




















































                    Thanks for contributing an answer to Reverse Engineering Stack Exchange!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2freverseengineering.stackexchange.com%2fquestions%2f20762%2fhow-to-print-eax-value-with-radare2%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    -

                    Popular posts from this blog

                    Gersau Kjelder | Navigasjonsmeny46°59′0″N 8°31′0″E46°59′0″N...

                    Image
                    Tidlegare republikkarSkipingar i 1433Kommunar i SchwyzDistrikt i SchwyzNedleggingar i 1798Stader ved Vierwaldstättersee kommunekantonenSchwyzSveitskm²VierwaldstätterseeLauerz Gersau Kommunevåpenet til Gersau Plassering Styresmakter Land   Sveits Kanton kantonen Schwyz Distrikt Gersau Språk tysk Geografi Flatevidd  - kommune 23,70 km² Innbyggjarar  - kommune (desember 2010)    - folketettleik 2 094   88,4 /km² Koordinatar 46°59′0″N 8°31′0″E  Koordinatar: 46°59′0″N 8°31′0″E  Høgd over havet 435 moh Diverse annan informasjon Postnummer 6442 Nettstad: www.gersau.ch Freistaat und Republik Gersau Fristaten og republikken Gersau By-republikk og alliert protektorat i Det gamle sveitsiske eidsforundet ←   ← 1433–1798 1814–1818 →   → Hovudstad Gersau Styreform Republikk Historisk periode Tidleg moderne tid  - Kjøpte fridom frå
                    Read more

                    Hestehale Innhaldsliste Hestehale på kvinner | Hestehale på menn | Galleri | Sjå òg |...

                    Image
                    Frisyrar frisyrehårhårstrikkhårklemmerøyrethesthovudverkeuropeisk motejobbtreningfletterparykkarungdomsopprørmotkulturmusikararmotorsykkelentusiastarpolitietpolitiskforretningverksemdfiskeflette Hestehale sett bakfrå. Hestehale på ein mannleg indianarleiar. Hestehale er ein frisyre der ein samlar det meste eller alt av langt hår [1] i bakhovudet med ein hårstrikk eller liknande. Avhengig av mote kan det òg vere vanleg å sette opp hestehalen med hårklemmer eller å ha hestehalen hengande på den eine sida av hovudet ved å samle håret ved øyret. Hestehale er ein vanleg frisyre for jenter og for gutar med langt hår. Han har fått namnet sitt etter likskapen med halen på ein hest. For stramme hestehaler kan føre til hårtap, [2] i nokre høve også hovudverk. [3] Innhaldsliste 1 Hestehale på kvinner 2 Hestehale på menn 3 Galleri 4 Sjå òg 5 Bakgrunnsstoff 6 Kjelder Hestehale på kvinner | Ungjente med hestehale som held håret unna ansiktet
                    Read more

                    What is the “three and three hundred thousand syndrome”?Who wrote the book Arena?What five creatures were...

                    Image
                    What happens when the centripetal force is equal and opposite to the centrifugal force? Why is "la Gestapo" feminine? Nested Dynamic SOQL Query How are passwords stolen from companies if they only store hashes? Exposing a company lying about themselves in a tightly knit industry: Is my career at risk on the long run? Can "few" be used as a subject? If so, what is the rule? Why are there no stars visible in cislunar space? categorizing a variable turns it from insignificant to significant Do I need an EFI partition for each 18.04 ubuntu I have on my HD? What are the consequences of changing the number of hours in
                    Read more