From 3f0a1e64c7e7b410ad5f4e2024cd692536389449 Mon Sep 17 00:00:00 2001 From: Brett Weiland Date: Wed, 16 Dec 2020 17:45:09 -0600 Subject: new file: x86_64/write4/exploit.py new file: x86_64/write4/useful_gadgets --- x86_64/write4/useful_gadgets | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 x86_64/write4/useful_gadgets (limited to 'x86_64/write4/useful_gadgets') diff --git a/x86_64/write4/useful_gadgets b/x86_64/write4/useful_gadgets new file mode 100644 index 0000000..09c0849 --- /dev/null +++ b/x86_64/write4/useful_gadgets @@ -0,0 +1,19 @@ +0x000000000040068d : pop rsp ; pop r13 ; pop r14 ; pop r15 ; ret + +0x0000000000400690 : pop r14 ; pop r15 ; ret +0x0000000000400628 : mov qword ptr [r14], r15 ; ret + +0x000000000040069) : pop rdi; ret + + + + + +0x0000000000400510 : print_file@plt +0x0000000000600df0 : addr of init array + +we should write to .init_array .fini_array + + + + -- cgit v1.2.3