flat assembler
Message board for the users of flat assembler.

Index > Heap > success !

Author
Thread Post new topic Reply to topic
nop



Joined: 01 Sep 2008
Posts: 165
Location: right here left there
nop
im so happy now im not depressed anymore Very Happy

i succeeded, but i dont remember a thing Laughing

i hope nobody was woried about me Embarassed

do you know fs: Question

well, i borowed fs: codename and i masked myself with it,

ok, technically i ored our codenames together

and gues what? i morphed into hlt Surprised

trouble was, all interupts were disabled Shocked

it could be fatal for me Sad

luckily fs: saw what happened, and xored me back again... Smile


now im so happy because now i know i can be anybody i like, even my idol int3 Cool

so i dont have to always be an under-achiever, i can do or be anything i like Wink

all i have to do is borow a mask... Exclamation

hmmm.... i wonder who will i be next .... Question
Post 19 Sep 2008, 19:25
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
?
Post 19 Sep 2008, 23:19
View user's profile Send private message Visit poster's website Reply with quote
DOS386



Joined: 08 Dec 2006
Posts: 1901
DOS386
> do you know fs:

YES, it's equal 0 -> GPF Shocked !!!
Post 20 Sep 2008, 01:00
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
nop wrote:
i can do or be anything i like
Can you be UD2? CPUID? RDTSC
Post 20 Sep 2008, 01:16
View user's profile Send private message Visit poster's website Reply with quote
CPUID



Joined: 20 Sep 2008
Posts: 4
Location: Right here
CPUID
yes, see i can be CPUID, or any other Laughing

(this is really nop)

revolution, spoiler - two byte code names are a bit hard for me yet, youll make me all depressed again. i just can do 1-byte ones ok?

you and DOS386 dont know fs: ?

try something like

mov reg,fs:[mem]

and see what code you get ... Cool
Post 20 Sep 2008, 04:26
View user's profile Send private message Reply with quote
Tomasz Grysztar
Assembly Artist


Joined: 16 Jun 2003
Posts: 7724
Location: Kraków, Poland
Tomasz Grysztar
CPUID wrote:
try something like

mov reg,fs:[mem]

and see what code you get ... Cool

The only true and allowed here syntax is:
Code:
mov reg,[fs:addr]    
Post 20 Sep 2008, 12:04
View user's profile Send private message Visit poster's website Reply with quote
nop



Joined: 01 Sep 2008
Posts: 165
Location: right here left there
nop
hey, cpuid, who are you? you arent me Shocked

ha ha, you don't even know the proper fasm syntax. tomasz grysztar Himself had to tell you off Laughing

evryone, cpuid is an imposter. cpuid is not me (nop)

revolution, DOS386, do you know fs: yet Question

try what tomasz said, not what cpuid said ....
Post 20 Sep 2008, 13:21
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
fs = ? I don't know. I so stupid.

Is it function select? frog soup? frankensteins suspenders? forced syntax? foolish spelling?
Post 20 Sep 2008, 15:49
View user's profile Send private message Visit poster's website Reply with quote
nop



Joined: 01 Sep 2008
Posts: 165
Location: right here left there
nop
revolution wrote:
fs = ? I don't know. I so stupid.

Is it function select? frog soup? frankensteins suspenders? forced syntax? foolish spelling?

ha ha very funny Laughing

its one of my distant relatives, not fs but fs:

all of my rellies also have code names. you know mine is 90h

cs=code segment
ds=data segment
es=extra segment
fs=f... segment
gs=g... segment

any suggestions for fs and gs?? i dont know either, except maybe some are offensive Wink

but I know fs:
its an o....... p..... and the code name is ..h
Post 20 Sep 2008, 18:48
View user's profile Send private message Reply with quote
edfed



Joined: 20 Feb 2006
Posts: 4237
Location: 2018
edfed
frame segment
general segment
Post 21 Sep 2008, 08:05
View user's profile Send private message Visit poster's website Reply with quote
Feryno



Joined: 23 Mar 2005
Posts: 454
Location: Czech republic, Slovak republic
Feryno
to Tomasz:
this works also on my version of FASM:
fs mov reg,[addr]
Post 22 Sep 2008, 13:59
View user's profile Send private message Visit poster's website ICQ Number Reply with quote
Tomasz Grysztar
Assembly Artist


Joined: 16 Jun 2003
Posts: 7724
Location: Kraków, Poland
Tomasz Grysztar
It works, but it was not intended for such usage.
Post 22 Sep 2008, 14:38
View user's profile Send private message Visit poster's website Reply with quote
CPUID



Joined: 20 Sep 2008
Posts: 4
Location: Right here
CPUID
please believe me, i am really nop, and nop is me

but nop plays games, not me Smile

i know the answer to nop's puzzle because i am nop and i wrote it.

fs: is an override prefix, the code name (i.e. opcode) is 64h

90h OR 64h = F4h = opcode for hlt

see?
Post 24 Sep 2008, 03:50
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17279
Location: In your JS exploiting you and your system
revolution
Yes, we know that, but can you use that "trick" to be pblendw xmm12,[rax+rsi*4+0x4f2e78],0x42?
Post 24 Sep 2008, 06:02
View user's profile Send private message Visit poster's website Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  


< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar.

Powered by rwasa.