1. install EZserver and running in windows
2. make file fuzzer with filename " fuzzerserver.py" and this the script
3. Running Ollydbg and EZserver, and do fuzzer in bactrack this result
this Result SEH Chain and the press Shift + F9
4.Look For POP and Retn
copy file "MSVCRTD.DLL" from windows and paste in folder tmp in backtrack, and make running tool msfpescan, like this
and the click view-exuctables modules- choose "MSVCRTD.DLL" and double click
Right CLick in - search for - and will appear dialog box, your type
like the one in the picture
and click button Find, and this result
5. Search offset for Overwrite SEH
create panttern offset, like this example
after create pattern and open create result , copy this result in file "fuzzerserver.py"
after copy, you run Ezserver and olldbg then do fuzzing, you will can result this
cek SEH chainand have result ths
and the press Shift + F9, and this result
make pattern offset
edit file "fuzzerserver.py" become
and running Ezserver and Ollydbg, and do fuzzing, after fuzzing cek SEH chain and the Press Shift+F9
.png)
Tidak ada komentar:
Posting Komentar