我一直在试图操纵我的.s文件中的一个字符串
我希望将包含“/ bin / bash”的变量“pa”转换为“/ bin / sh”,然后我想调用执行“/ bin / sh”的系统
我写了一个打印机制来确保“pa”有“/ bin / bash”
我试图做到这一点
mov eax,pa
mov [eax+5],[eax+7]; /bin/bash becomes /bin/sash\0
mov [eax+6],[eax+8]; /bin/sash becomes /bin/shsh\0
mov [eax+7],[eax+9]; /bin/shsh becomes /bin/sh\0但我想这不是它的工作方式
我是新来的NASM
请帮助我
整个代码片段如下
`section .data
%defstr path %!SHELL
pa db path,10
palen equ $-pa
section .text
global _start
_start:
mov eax,pa
mov [eax+5],[eax+7] ; /bin/bash becomes /bin/sash\0
mov [eax+6],[eax+8] ; /bin/sash becomes /bin/shsh\0
mov [eax+7],[eax+9] ; /bin/shsh becomes /bin/sh\0
mov eax,4 ; The system call for write (sys_write)
mov ebx,1 ; File descriptor 1 - standard output
mov ecx,pa
mov edx,palen
int 80h
mov eax,1 ; The system call for exit (sys_exit)
mov ebx,0 ; Exit with return code of 0 (no error)
int 80h
'
2517
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
