|
|
|
|
|
|
by AstralStorm
3083 days ago
|
|
|
Once you know the location, if the process is not randomized, you can extract from that location. You may assume some things about implementation (e.g. libstdc++ or libc++, glibc memory allocator, general compiler version) Additionally some hardening methods like stack protector make stack allocated objects stand out a lot from register values. |
|
|