Hi,
Great project works a treat using the defaults from libc. I did have a question about the process in general and manually specifying hijacked function and variable.
If I set func-sym to some other function (that i know is being called) i get a crash when the second stage shellcode is built when the jmp_addr is set to malloc.
Is this correct? shouldn't the jump address be the address of the symbol that i set with command line option --func-sym?
Hi,
Great project works a treat using the defaults from libc. I did have a question about the process in general and manually specifying hijacked function and variable.
If I set
func-symto some other function (that i know is being called) i get a crash when the second stage shellcode is built when thejmp_addris set tomalloc.Is this correct? shouldn't the jump address be the address of the symbol that i set with command line option
--func-sym?