ROP addresses can get filtered for bad bytes/chars.
If the user does not want that the shellcode contains certain bytes (e.g. newlines, 0x0 etc), he can now define it in the rop object with the set_badbytes function. rop.load_gadgets("gadgets") rop.set_badbytes([0x01, 0xf9, 0x93, 0x95, 0x96, 0x40]) chain = rop.write_to_mem(0x11223344, "abcdefgh") functions which filter badbytes: write_to_mem add_to_mem write_to_mem_v2 func_call _get_single_ret _find_reg_setting_gadgets _filter_reg_setting_gadgets _get_sufficient_partial_controllers
parent
42fa222c
Please register or sign in to comment