why substract 0xe7 from leaked libc_start_main address in everybodys_got_something_to_hide? #1
Description
Hi,
This is prob a noob question but for the hard address leak in everybodys_got_something_to_hide, why do we need to subtract a offset from the leaked lib_c_main address?
libc_base = libc_start_main - libc.symbols['__libc_start_main'] - 0xe7
I understand that the libc_start_main is pushed onto the stack at somepoint during runtime, but why is a offset necessary?
Thanks!