Being a beginner (in reversing and debugging with low-level tools in general), i’d be interested to know what the dunnoWhatIAm file is good for. The file-command tells me it is a shared object with debug-information, which as i could observe gets loaded by gdb when opening getme, but as someone not firm in gdb, i couldn’t find a way to use it to my advantage.
Actually, dunnoWhatIAm contains the debugging information of getme:
- Separate Debug Files (Debugging with GDB)
- https://slackito.com/2011/08/24/separate-debug-information-with-gdb/
We can see that the name of this debug file is present in the .gnu_debuglink section of getme (I used radare2):
[0x00001060]> izz~dunnoWhatIAm
021 0x00003054 0x00000000 12 13 (.gnu_debuglink) ascii dunnoWhatIAm