Skip to main content

LLDB: A Comprehensive Guide to Debugging

 

CodeLLDB:
CodeLLDB is a powerful and flexible debugger extension for Visual Studio Code. It provides advanced debugging features for C, C++, and Rust applications.

LLDB Commands

Start Debugging a Program:

lldb <program>

Run the Program:

run

Set a Breakpoint:

breakpoint set --name <function_name>

Sets a breakpoint at the specified function.

Set a Breakpoint at a Specific Line:

breakpoint set --file <filename> --line <line_number>

Sets a breakpoint at a specific line in a file.

Set Conditional Breakpoints:

breakpoint set --name <function_name> --condition "<condition>"

Sets a breakpoint that only triggers when the condition is true.

List Breakpoints:

breakpoint list

Displays all breakpoints.

Step Over a Line:

next

Executes the next line of code but steps over function calls.

Step Into a Function:

step

Steps into a function if the current line calls one.

Continue Execution:

continue

Inspect Variables:

frame variable <variable_name>

Displays the value of a variable in the current scope.

Watch a Variable:

watchpoint set variable <variable_name>

Sets a watchpoint to monitor changes to a variable.

Inspect Call Stack:

thread backtrace

Displays the call stack of the current thread.

Inspect Memory:

memory read <address> --size <size>

Reads memory from the specified address.

Examine Memory:

memory read <address> --size <size> --format <format>

Reads the memory at a specific address. You can specify the size (--size) and format (--format, e.g., x for hexadecimal).

Dump Memory in Hexadecimal:

memory read <address> --size <size> --format x

Dumps memory in a hexadecimal format for easier inspection.

View Registers:

register read

Displays the values of all CPU registers.

Change Register Values:

register write <register_name> <value>

Modifies the value of a register.

List Disassembled Code:

disassemble --frame

Disassembles the current function’s code.

Disassemble a Specific Function:

disassemble --name <function_name>

Disassembles a specific function by name.

Evaluate Expressions:

expression <expression>

Evaluates an expression and print the result.

Additional Resources

  1. LLDB Tutorial
  2. GDB to LLDB command map

Comments

Popular posts from this blog

Bug Boundy Methodology, Tools & Resources

Start by defining a clear objective, such as exploiting a remote code execution (RCE) vulnerability or bypassing authentication on your target. Then, consider how you can achieve this goal using various attack vectors like XSS, SSRF, or others - these are simply tools to help you reach your objective. Use the target as how a normal user would, while browsing keep these questions in mind: 1)How does the app pass data? 2)How/where does the app talk about users? 3)Does the app have multi-tenancy or user levels? 4)Does the app have a unique threat model? 5)Has there been past security research & vulnerabilities? 6)How does the app handle XSS, CSRF, and code injection?

Install & set up mitmweb or mitmproxy in Linux

Step 1: Go to the mitmproxy page and download the binaries. Step 2: Install the downloaded tar file with the command " tar -xzf <filename>.tar.gz " Step 3: In the FoxyProxy add the proxy 127.0.0.1:8080  and turn it on. Step 4 : In the terminal run command " ./mitmweb " Step 5: Go to the page  http://mitm.it/   and download the mitmproxy's Certificate. Step 6: If you downloaded the certificate for Firefox, then go to " settings -> Privacy & Security -> Click View Certificates -> Click  Import ", then import the certificate.  Step 7: Now you are ready to capture the web traffic. Step 8 : In terminal run " ./mitmweb"

API Bug Bounty Hunting: Reconnaissance and Reverse Engineering an API

  In order to target APIs, you must first be able to find them.APIs meant for consumer use are meant to be easily discovered. Typically, the API provider will market their API to developers who want to be consumers. So, it will often be very easy to find APIs, just by using a web application as an end-user. The goal here is to find APIs to attack and this can be accomplished by discovering the API itself or the API documentation. Bug Boundy Methodology, Tools & Resources Start by defining a clear objective, such as exploiting a remote code execution (RCE) vulnerability or bypassing… adithyakrishnav.blogspot.com Reconnaissance Passive Reconnaissance It is obtaining information about a target without directly interacting with the target’s systems. Google Dorking Firstly, google search for “<app name> API”. intitle:” api” site:”google.com” inurl:”/api/v2" site:”google.com” inurl:”/api/v1" intext:”index of /” inurl:json site:”google.com” intitle:”index.of” intext:”api.t...