People always ask if they need to fully understand PE when coming to windows reverse engineering.

GOT stands for Global Offset Table. It holds sections of addresses of functions that are dynamically liked. Most binaries usually don’t include every function to reduce the binary size.

Glibc uses a first-fit algorithm to select a free chunck and this post is to study more about how first-fit algorithm works in memory management.

Key concept

stack grows down to lower memory addresses. (00000000~ffffffff)

The stack is simply an area in RAM that was chosen to be the stack.