固件逆向题
使用binwalk分离bin文件
使用firmware-mod-kit工具来进行解压squashfs文件系统
因为tmp目录通常给的权限最高 后门程序一般都放在该目录
然后upx脱壳 逆向backdoor程序
IDA查找字符串得到网址"echo.byethost51.com"
交叉引用找到默认端口36667
firmware
2023-10-24 11:23:58
相关文章
- 10-24How to Update Autel MaxiVCI Mini VCI FIRMWARE
- 10-24wlcore: firmware chunk too long
- 10-24How to update Nexiq firmware with John Deere SA
- 10-240x05 设备漏洞---firmware-analysis-toolkit报错
- 10-24How to Update CN900 Mini Firmware to 1.50.2.23 (with Update Tool)
- 10-24How to update Nexiq firmware with John Deere SA
- 10-24KVM创建快照失败 “Operation not supported: internal snapshots of a VM with pflash based firmware are not su
- 10-24Old ST-LINK firmware detected.do you want to upgrade it?升级固件
- 10-24Ubuntu 12.04 wireless networks : devices not ready (firmware missing)解决办法
- 10-24GM MDI GM MDI 2 Interface Firmware Update Guide