Metasploit mailing list archives
Encoder(?) problems.
From: reth at smashthestates.net (Reth)
Date: Sun, 1 Jul 2007 16:51:08 +1000
Excluding the bad characters, which I removed, all the data is there. Also trying with the encoded payload, everything seems to be normal. The payload is still mangled after being decoded, though. I'm stumped. -Reth On Sun, Jul 01, 2007 at 12:40:43AM -0500, H D Moore wrote:
Could be the heap routines are corrupting the payload and it just happens to skip it with the manual encoding (chunk flag, etc). Try sticking a known pattern of bytes in place of the payload and seeing whether these are becoming corrupted as well. Something like: "\xcc" + ([*(0.255)].pack('C*') * 2) (int3 + 0-255 repeated twice)
Current thread:
- Encoder(?) problems. Reth (Jun 30)
- Encoder(?) problems. H D Moore (Jun 30)
- Encoder(?) problems. Reth (Jun 30)
- Encoder(?) problems. H D Moore (Jun 30)
- Encoder(?) problems. Reth (Jun 30)
- Encoder(?) problems. Reth (Jun 30)
- Encoder(?) problems. H D Moore (Jun 30)