CTF-All-In-One/src/writeup/6.2.4_re_csawctf2015_wyvern/wyvern.cpp

#include <iostream>
#include <fstream>
#include "pin.H"

ofstream OutFile;

// The running count of instructions is kept here
// make it static to help the compiler optimize docount
static UINT64 icount = 0;

// This function is called before every instruction is executed
VOID docount(void *ip) {
    if ((long int)ip == 0x00402a7f) icount++;   // 0x00402a7f cmp eax, ecx
    if ((long int)ip == 0x0040e2af) icount++;   // 0x0040e2a2 jne 0x0040e2af
}

// Pin calls this function every time a new instruction is encountered
VOID Instruction(INS ins, VOID *v)
{
    // Insert a call to docount before every instruction, no arguments are passed
    INS_InsertCall(ins, IPOINT_BEFORE, (AFUNPTR)docount, IARG_INST_PTR, IARG_END);  // IARG_INST_PTR: Type: ADDRINT. The address of the instrumented instruction.
}

KNOB<string> KnobOutputFile(KNOB_MODE_WRITEONCE, "pintool",
    "o", "inscount.out", "specify output file name");

// This function is called when the application exits
VOID Fini(INT32 code, VOID *v)
{
    // Write to a file since cout and cerr maybe closed by the application
    OutFile.setf(ios::showbase);
    OutFile << "Count " << icount << endl;
    OutFile.close();
}

/* ===================================================================== */
/* Print Help Message                                                    */
/* ===================================================================== */

INT32 Usage()
{
    cerr << "This tool counts the number of dynamic instructions executed" << endl;
    cerr << endl << KNOB_BASE::StringKnobSummary() << endl;
    return -1;
}

/* ===================================================================== */
/* Main                                                                  */
/* ===================================================================== */
/*   argc, argv are the entire command line: pin -t <toolname> -- ...    */
/* ===================================================================== */

int main(int argc, char * argv[])
{
    // Initialize pin
    if (PIN_Init(argc, argv)) return Usage();

    OutFile.open(KnobOutputFile.Value().c_str());

    // Register Instruction to be called to instrument instructions
    INS_AddInstrumentFunction(Instruction, 0);

    // Register Fini to be called when the application exits
    PIN_AddFiniFunction(Fini, 0);

    // Start the program, never returns
    PIN_StartProgram();

    return 0;
}
finish 6.2.4 2017-12-05 15:24:59 +07:00			`#include <iostream>`
			`#include <fstream>`
			`#include "pin.H"`

			`ofstream OutFile;`

			`// The running count of instructions is kept here`
			`// make it static to help the compiler optimize docount`
			`static UINT64 icount = 0;`

			`// This function is called before every instruction is executed`
			`VOID docount(void *ip) {`
			`if ((long int)ip == 0x00402a7f) icount++; // 0x00402a7f cmp eax, ecx`
			`if ((long int)ip == 0x0040e2af) icount++; // 0x0040e2a2 jne 0x0040e2af`
			`}`

			`// Pin calls this function every time a new instruction is encountered`
			`VOID Instruction(INS ins, VOID *v)`
			`{`
			`// Insert a call to docount before every instruction, no arguments are passed`
			`INS_InsertCall(ins, IPOINT_BEFORE, (AFUNPTR)docount, IARG_INST_PTR, IARG_END); // IARG_INST_PTR: Type: ADDRINT. The address of the instrumented instruction.`
			`}`

			`KNOB<string> KnobOutputFile(KNOB_MODE_WRITEONCE, "pintool",`
			`"o", "inscount.out", "specify output file name");`

			`// This function is called when the application exits`
			`VOID Fini(INT32 code, VOID *v)`
			`{`
			`// Write to a file since cout and cerr maybe closed by the application`
			`OutFile.setf(ios::showbase);`
			`OutFile << "Count " << icount << endl;`
			`OutFile.close();`
			`}`

			`/* ===================================================================== */`
			`/* Print Help Message */`
			`/* ===================================================================== */`

			`INT32 Usage()`
			`{`
			`cerr << "This tool counts the number of dynamic instructions executed" << endl;`
			`cerr << endl << KNOB_BASE::StringKnobSummary() << endl;`
			`return -1;`
			`}`

			`/* ===================================================================== */`
			`/* Main */`
			`/* ===================================================================== */`
			`/* argc, argv are the entire command line: pin -t <toolname> -- ... */`
			`/* ===================================================================== */`

			`int main(int argc, char * argv[])`
			`{`
			`// Initialize pin`
			`if (PIN_Init(argc, argv)) return Usage();`

			`OutFile.open(KnobOutputFile.Value().c_str());`

			`// Register Instruction to be called to instrument instructions`
			`INS_AddInstrumentFunction(Instruction, 0);`

			`// Register Fini to be called when the application exits`
			`PIN_AddFiniFunction(Fini, 0);`

			`// Start the program, never returns`
			`PIN_StartProgram();`

			`return 0;`
			`}`