Buffer Generator

Buffer Generator akan dibutuhkan saat kita ingin mengetahui byte ke berapa aplikasi mengalami crash saat melakukan buffer overflow exploitation dengan metode fuzzing.

Buat sebuah file dengan nama dengan isi skrip sebagai berikut:


import sys
import string

def usage():
    print "Usage: ", sys.argv[0], "  [string]"
    print "    is the size of the buffer to generate."
    print "   [string] is the optional string to search for in the buffer."
    print ""
    print "   If [string] is provided, the buffer will not be printed, only the location"
    print "     of where the string starts in the buffer.  This search is CASE SENSITIVE!"

    dummy = int(sys.argv[1])

if len(sys.argv) > 3:

if len(sys.argv) == 3:
    search = "TRUE"
    searchstr = sys.argv[2]
    search = "FALSE"

stop = int(sys.argv[1]) / 3 + 1
patend = int(sys.argv[1])
patrange = range(0,stop,1)
first = 65
second = 97
third = 0
item = ""

for i in patrange:
    reset_first = "FALSE"
    reset_second = "FALSE"
    if third == 10:
        third = 0
        second += 1
    if second == 123:
        first +=1
        reset_second = "TRUE"
    if first == 92:
        reset_first = "TRUE"
    item += chr(first)
    item += chr(second)
    item += str(third)
    third += 1
    if reset_first == "TRUE":
        first = 65
    if reset_second == "TRUE":
        second = 97

if search != "TRUE":
    location = item.find(searchstr)
    if location == -1:
        print sys.argv[2] + " not found in buffer."
    print location

untuk menjalankan aplikasi tersebut di konsol, cukup dengan format ./ <jumlah karakter>


