Metasploit mailing list archives

pattern_offset

From: ricardo.teixas at gmail.com (Ricardo F. Teixeira)
Date: Thu, 22 Jan 2009 04:23:09 +0000

Hi Patrcik,
Thanks for the reply :)

I try with pattern_create.rb with 72 and 220 value. With 72 it return me the
same address, and with 220 it return me 0x6f343d2d.

$ ruby /opt/local/msf/tools/pattern_offset.rb 6F343D2D 220
nil

Supose we send A*76 to the aplication it crash and tell me that EIP as the
value 41414141 so 76 - 4 bytes = 0x6f344400 (EIP)

So I try it with patter_offset and nothing :/ I must doing something wrong,
and I can't figure it out!

-- 
Ricardo F. Teixeira
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.metasploit.com/pipermail/framework/attachments/20090122/02f7952a/attachment.htm>

Current thread:

pattern_offset Ricardo F. Teixeira (Jan 21)
- pattern_offset Patrick Webster (Jan 21)
  - pattern_offset Ricardo F. Teixeira (Jan 21)
    - pattern_offset H D Moore (Jan 21)
    - pattern_offset Patrick Webster (Jan 21)