Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

how to print heap info #701

Open
r3turn00 opened this Issue Mar 25, 2019 · 5 comments

Comments

Projects
None yet
2 participants
@r3turn00
Copy link

r3turn00 commented Mar 25, 2019

when i use gdb, i could use "p main_arern", "bins" to print heap info. I wonder if edb have the same features.

@eteran eteran added the question label Mar 25, 2019

@eteran

This comment has been minimized.

Copy link
Owner

eteran commented Mar 25, 2019

You can give the Heap Analysis plugin a try under the Plugins menu :-)

@r3turn00

This comment has been minimized.

Copy link
Author

r3turn00 commented Mar 29, 2019

I have tried using Heap Analysis plugin, but it seems helpless. It provides very little information and sometimes even doesn't work

@eteran

This comment has been minimized.

Copy link
Owner

eteran commented Mar 29, 2019

I suppose the question is what kind of information are you looking for. The plugin should be able to list nodes if a heap exists (look for things like "[heap]" in the memory map. What other kinds of information are you hoping to find?

@r3turn00

This comment has been minimized.

Copy link
Author

r3turn00 commented Apr 2, 2019

I want to find out the address of main_arena, It would be better if it will show fastbins, small bins and unsorted bins like gdbpwn
pwndbg> p &main_arena $2 = (struct malloc_state *) 0x7fe132d19b20 <main_arena> pwndbg> bins fastbins 0x20: 0x0 0x30: 0x0 0x40: 0x0 0x50: 0x0 0x60: 0x0 0x70: 0x0 0x80: 0x0 unsortedbin all: 0x0 smallbins empty largebins empty

@eteran

This comment has been minimized.

Copy link
Owner

eteran commented Apr 2, 2019

It's been a while since I've worked on the plugin, but these these seem like good things to add! I'll see what happens can do.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.