GDB

From Hax0rpedia

Here some GDB tricks for our fellow code ninjas ;)

[edit] Get the args of a call

b *0xCALLOFFSET

than you can:

p $esp p $esp+4

etc. + 4 for each arg.

You will get a memory adress so directly do

x/x $esp x/x $esp+4

etc. after that you can do a:

x/fs 0x0806ffff

or

x/8fx 0x0806ffff

or similar to extract your stuff from memory.

Retrieved from "http://hax0rpedia.com/index.php/GDB"