Skip to content

Instantly share code, notes, and snippets.

@Mech0n

Mech0n/FakeFile_x64.py

Last active August 8, 2020 12:42
Show Gist options
  • Save Mech0n/6d0ff0c5523a9b9ffcbfe9492739bacc to your computer and use it in GitHub Desktop.
Save Mech0n/6d0ff0c5523a9b9ffcbfe9492739bacc to your computer and use it in GitHub Desktop.
Download ZIP
FakeFile_x64
Raw
FakeFile_x64.py
def pack_file_64(_flags = 0,
_IO_read_ptr = 0,
_IO_read_end = 0,
_IO_read_base = 0,
_IO_write_base = 0,
_IO_write_ptr = 0,
_IO_write_end = 0,
_IO_buf_base = 0,
_IO_buf_end = 0,
_IO_save_base = 0,
_IO_backup_base = 0,
_IO_save_end = 0,
_IO_marker = 0,
_IO_chain = 0,
_fileno = 0,
_lock = 0,
_mode = 0):
struct = p64(_flags) + \
p64(_IO_read_ptr) + \
p64(_IO_read_end) + \
p64(_IO_read_base) + \
p64(_IO_write_base) + \
p64(_IO_write_ptr) + \
p64(_IO_write_end) + \
p64(_IO_buf_base) + \
p64(_IO_buf_end) + \
p64(_IO_save_base) + \
p64(_IO_backup_base) + \
p64(_IO_save_end) + \
p64(_IO_marker) + \
p64(_IO_chain) + \
p32(_fileno)
struct = struct.ljust(0x88, "\x00")
struct += p64(_lock)
struct = struct.ljust(0xc0,"\x00")
struct += p64(_mode)
struct = struct.ljust(0xd8, "\x00")
return struct
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment