Vlang Binary Debugging

Why vlang? V is a featured, productive, safe and confortable language highly compatible with c, that generates neat binaries with c-speed, the decompilation also seems quite clear as c code.
https://vlang.io/

After open the binary with radare in debug mode "-d" we proceed to do the binary recursive analysis with "aaaa" the more a's the more deep analys.

The function names are modified when the binary is crafted, if we have a function named hello in a module named main we will have the symbol main__hello, but we can locate them quicly thanks to radare's grep done with "~" token in this case applied to the "afl" command which lists all the symbols.

Being in debug mode we can use "d*" commands, for example "db" for breakpointing the function and then "dc" to start or continue execution.

Let's dissasemble the function with "pD" command, it also displays the function variables and arguments as well, note also the xref "call xref from main"

Let's take a look to the function arguments, radare detect's this three 64bits registers used on the function.

Actually the function parameter is rsi that contains a testing html to test the href extraction algorithm.

The string structure is quite simple and it's plenty of implemented methods.

With F8 we can step over the code as we were in ollydbg on linux.

Note the rip marker sliding into the code.

We can recognize the aray creations, and the s.index_after() function used to find substrings since a specific position.

If we take a look de dissasembly we sill see quite a few calls to tos3() functions.
Those functions are involved in string initialization, and implements safety checks.

• tos(string, len)
• tos2(byteptr)
• tos3(charptr)

In this case I have a crash in my V code and I want to know what is crashing, just continue the execution with "dc" and see what poits the rip register.

In visual mode "V" we can see previous instructions to figure out the arguments and state.

We've located the crash on the substring operation which is something like "s2 := s1[a..b]" probably one of the arguments of the substring is out of bounds but luckily the V language has safety checks and is a controlled termination:

Switching the basic block view "space" we can see the execution flow, in this case we know the loops and branches because we have the code but this view also we can see the tos3 parameter "href=" which is useful to locate the position on the code.

When it reach the substr, we can see the parameters with "tab" command.

Looking the implementation the radare parameter calculation is quite exact.

Let's check the param values:

so the indexes are from 0x0e to 0x24 which are inside the buffer, lets continue to next iteration,
if we set a breakpoint and check every iteration, on latest iteration before the crash we have the values 0x2c to 0x70 with overflows the buffer and produces a controlled termination of the v compiled process.

Related articles

1. Pentest Tools Website Vulnerability
2. Pentest Tools Port Scanner
3. Free Pentest Tools For Windows
4. Hacker Tools For Pc
5. Hacker Tool Kit
6. Hacker Tools 2019
7. Pentest Tools For Windows
8. What Is Hacking Tools
9. Underground Hacker Sites
10. Game Hacking
11. Hacking Tools Online
12. Easy Hack Tools
13. Pentest Tools Find Subdomains
14. Hack Tools 2019
15. Pentest Tools
16. Nsa Hacker Tools
17. Android Hack Tools Github
18. Hacker Tools Online
19. How To Make Hacking Tools
20. Black Hat Hacker Tools
21. Game Hacking
22. Pentest Tools Framework
23. Hacker Security Tools
24. Hacker Tools Free Download
25. Pentest Tools Github
26. Hackrf Tools
27. Hack Tools 2019
28. Hacking Tools Windows 10
29. Beginner Hacker Tools
30. Pentest Tools Framework
31. Hack Apps
32. Pentest Tools Review
33. How To Hack
34. Hack Tools For Ubuntu
35. Pentest Tools For Windows
36. Blackhat Hacker Tools
37. Hacking Tools 2019
38. Hacking Tools For Windows 7
39. Computer Hacker
40. Game Hacking
41. Hacking Tools Windows 10
42. Pentest Tools Download
43. Pentest Tools For Ubuntu
44. Game Hacking
45. Pentest Tools Android
46. Computer Hacker
47. Hacking Tools Usb
48. Hacker Hardware Tools
49. Hacking Tools For Windows 7
50. Hacker Tools Free
51. Easy Hack Tools
52. Hacking Tools For Beginners
53. Pentest Automation Tools
54. Install Pentest Tools Ubuntu
55. Pentest Tools Nmap
56. Hack Tools Github
57. Pentest Tools Bluekeep
58. Top Pentest Tools
59. Hacker Tools Apk Download
60. New Hack Tools
61. Hackrf Tools
62. Hacker Security Tools
63. Pentest Tools For Windows
64. Nsa Hack Tools
65. Pentest Recon Tools
66. Hack And Tools
67. Hacking Tools Windows 10
68. Hack Tools
69. Hacking Tools Mac
70. Pentest Tools For Windows
71. Hack App
72. Hack Tools 2019
73. New Hacker Tools
74. Hack Tools
75. What Are Hacking Tools
76. Pentest Tools For Windows
77. Usb Pentest Tools
78. Black Hat Hacker Tools
79. Hacker Security Tools
80. Computer Hacker
81. Hacking Tools For Windows Free Download
82. Hacking Tools Software
83. Pentest Tools
84. Pentest Tools Android
85. Hack Tools For Windows
86. Best Pentesting Tools 2018
87. Hack Tools For Windows
88. Pentest Tools Website Vulnerability
89. Pentest Tools Apk
90. Hacker Tools Linux
91. Hacker Tools Online
92. Blackhat Hacker Tools
93. Pentest Tools Review
94. Hacker Search Tools
95. Hack Tool Apk
96. Hack Tools Online
97. Easy Hack Tools
98. Install Pentest Tools Ubuntu
99. Hackers Toolbox
100. Hacking Tools Usb
101. Pentest Tools Website Vulnerability
102. Kik Hack Tools
103. Pentest Tools Github
104. Hacking Tools Mac
105. Github Hacking Tools
106. Hacker Tools 2020
107. Hacker Tools 2020
108. Blackhat Hacker Tools
109. Hacker Tools For Ios
110. How To Make Hacking Tools
111. Hacker Tools For Windows
112. Pentest Tools For Windows
113. Pentest Tools Framework
114. Hacking Tools Usb
115. Best Hacking Tools 2019
116. Hacking Tools Download
117. Pentest Tools
118. Hacker Security Tools
119. Underground Hacker Sites
120. Hack App