angrop icon indicating copy to clipboard operation
angrop copied to clipboard

Published 20 hours ago verified publisher icon angr

TODO Features

Open Kyle-Kyle opened this issue 1 year ago • 0 comments

handle gadgets like

[ins] In [2]: chain.print_payload_code()
chain = b""
chain += p32(0x809d9f7)	# mov eax, dword ptr [esp + 4]; ret 0xc
chain += p32(0x1010101)
chain += p32(0x0)
chain += p32(0xf5f5f5f5)

The issue is that this gadget requires another pop gadget to function correctly. But angrop currently does not support this. Should be easy enough by adding a special "gadget value" without interfering with the gadget effect

change how angrop works fundamentally to get rid of the assumption of each gadget transition performs similar to a ret

Kyle-Kyle avatar Jan 30 '24 06:01 Kyle-Kyle