Metasploit mailing list archives
What does msfencode BufferRegister option is used for?
From: Jordan Trover <shurimaxx () hotmail com>
Date: Thu, 28 Jul 2011 22:54:45 -0400
I hope the question is not too stupid, but I just started learning masm and I have ported one of the functions from syringe.c to masm to execute payloads directly from code. All the payloads I tested executed fine but they all crashed the exe that launched them with a memory access violation right after finishing executing the payload. So I added a SE handler, but still wasn't able to return to my code after the payload execution. Then I tried encoding the payload, got the same result. But then I tried encoding and using the option BufferRegister=EAX, this time the payload throws an exception but I am able to catch it and return. I read in metasploit website that BufferRegister is "The register that pointers to the encoded payload", but I don't fully understand why using that option allow me to catch the exception and without it I can't. Could someone give me an explanation on the BufferRegister option is involved in the execution of the payload?
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- What does msfencode BufferRegister option is used for? Jordan Trover (Jul 28)
- Re: What does msfencode BufferRegister option is used for? Peter Van Eeckhoutte (Jul 28)