Type your comment> @TazWake said:
Type your comment> @dontknow said:
No, should peda checksec give me a hint about it?
Possibly, but is it a register on a 64 bit binary?
I suppose you mean that overflow in x32 apps occurs in $esp, and in x86_64 in $rsp,$rbp.
And i need calculate overflow length, right? If yes - for start i need set break on something checking my input, but when i disassemble thing where overflow occurs i see bunch of @plt’s, i dont know what they do, how can i determine where overflow starts?
I dont know what i should search to find appropriate material, i seen output of checksec, tried searching overflow with that enabled option - nothing.