Vlang Binary Debugging

Why vlang? V is a featured, productive, safe and confortable language highly compatible with c, that generates neat binaries with c-speed, the decompilation also seems quite clear as c code.
https://vlang.io/

After open the binary with radare in debug mode "-d" we proceed to do the binary recursive analysis with "aaaa" the more a's the more deep analys.

The function names are modified when the binary is crafted, if we have a function named hello in a module named main we will have the symbol main__hello, but we can locate them quicly thanks to radare's grep done with "~" token in this case applied to the "afl" command which lists all the symbols.

Being in debug mode we can use "d*" commands, for example "db" for breakpointing the function and then "dc" to start or continue execution.

Let's dissasemble the function with "pD" command, it also displays the function variables and arguments as well, note also the xref "call xref from main"

Let's take a look to the function arguments, radare detect's this three 64bits registers used on the function.

Actually the function parameter is rsi that contains a testing html to test the href extraction algorithm.

The string structure is quite simple and it's plenty of implemented methods.

With F8 we can step over the code as we were in ollydbg on linux.

Note the rip marker sliding into the code.

We can recognize the aray creations, and the s.index_after() function used to find substrings since a specific position.

If we take a look de dissasembly we sill see quite a few calls to tos3() functions.
Those functions are involved in string initialization, and implements safety checks.

• tos(string, len)
• tos2(byteptr)
• tos3(charptr)

In this case I have a crash in my V code and I want to know what is crashing, just continue the execution with "dc" and see what poits the rip register.

In visual mode "V" we can see previous instructions to figure out the arguments and state.

We've located the crash on the substring operation which is something like "s2 := s1[a..b]" probably one of the arguments of the substring is out of bounds but luckily the V language has safety checks and is a controlled termination:

Switching the basic block view "space" we can see the execution flow, in this case we know the loops and branches because we have the code but this view also we can see the tos3 parameter "href=" which is useful to locate the position on the code.

When it reach the substr, we can see the parameters with "tab" command.

Looking the implementation the radare parameter calculation is quite exact.

Let's check the param values:

so the indexes are from 0x0e to 0x24 which are inside the buffer, lets continue to next iteration,
if we set a breakpoint and check every iteration, on latest iteration before the crash we have the values 0x2c to 0x70 with overflows the buffer and produces a controlled termination of the v compiled process.

More information

1. Usb Pentest Tools
2. Growth Hacker Tools
3. Hacker Tools Mac
4. Pentest Tools Github
5. Hack App
6. New Hack Tools
7. Hacking Tools Pc
8. Pentest Tools For Ubuntu
9. Hacker Tools For Pc
10. Hacking Tools For Mac
11. Hacking Tools Github
12. Pentest Tools For Ubuntu
13. Hacker Tools For Pc
14. Hacking Tools 2019
15. Hacker Hardware Tools
16. Growth Hacker Tools
17. Hacking Tools Software
18. Pentest Tools Framework
19. Hack Tools 2019
20. Hack Tools Mac
21. Hacking Tools Pc
22. Pentest Tools Apk
23. Blackhat Hacker Tools
24. Hack Tools
25. Hacking Tools For Windows
26. Hacker Tools Github
27. Hack Tools For Pc
28. Hackers Toolbox
29. Pentest Tools Subdomain
30. Best Hacking Tools 2019
31. Hacking Tools For Windows
32. Pentest Tools Bluekeep
33. Hacking Tools Pc
34. Hack Tools Online
35. Hacker
36. Best Pentesting Tools 2018
37. Game Hacking
38. Pentest Tools Github
39. Hacking Tools Kit
40. Hacker Tools List
41. Kik Hack Tools
42. Hacker Tools Online
43. What Are Hacking Tools
44. Pentest Tools
45. Hacker Tools For Windows
46. Best Hacking Tools 2019
47. New Hacker Tools
48. Free Pentest Tools For Windows
49. Hacking Tools For Kali Linux
50. Best Hacking Tools 2019
51. Blackhat Hacker Tools
52. Hacking Tools Github
53. Best Pentesting Tools 2018
54. Best Hacking Tools 2019
55. Hack And Tools
56. What Are Hacking Tools
57. Pentest Tools Find Subdomains
58. Nsa Hacker Tools
59. Hacker Tool Kit
60. Computer Hacker
61. Pentest Tools Linux
62. Hack App
63. Easy Hack Tools
64. New Hack Tools
65. Best Hacking Tools 2019
66. Hacker Tools Hardware
67. Hack Tools Github
68. Hack Tools For Mac
69. Hackrf Tools
70. Hacking Tools For Windows
71. Hacker Tools 2019
72. Hacker Tools Github
73. Hack Tools Github
74. Pentest Tools Windows
75. Hack Tools For Games
76. Hacker Tools Github
77. Hack Tool Apk
78. Physical Pentest Tools
79. Hack Tools For Windows
80. Hacks And Tools
81. Hack Tools Github
82. Hack Tools
83. Hacker Tools Github
84. Pentest Tools Subdomain
85. How To Hack
86. Pentest Tools Windows
87. Computer Hacker
88. Hacker Tools Linux
89. Pentest Tools List
90. Hacker Tools Linux
91. Hack App
92. Hacker Techniques Tools And Incident Handling
93. Hacking Tools For Kali Linux
94. Hacker Tools Free Download
95. Hacking Tools 2019
96. Hack Rom Tools
97. Hacking Tools Windows 10
98. Hack Tools For Mac
99. Android Hack Tools Github
100. Hack Apps
101. Hacker Tools Mac
102. What Are Hacking Tools
103. Pentest Automation Tools
104. Best Pentesting Tools 2018
105. Hacker Tools For Mac
106. Hacking Tools Usb
107. Hacker Tools Free Download
108. Top Pentest Tools
109. Pentest Recon Tools
110. Hacking Tools Online
111. Hacking Tools Free Download
112. Pentest Tools Open Source
113. Pentest Tools Github
114. Pentest Automation Tools
115. Pentest Tools Nmap
116. Hack Tools For Mac
117. Pentest Tools Github
118. Hack Tools For Ubuntu
119. Growth Hacker Tools
120. Nsa Hacker Tools
121. Hacker Tools
122. Hacker Tools Free Download
123. Hacker Tools List
124. Pentest Tools Port Scanner