Skip to content

Instantly share code, notes, and snippets.

@extremecoders-re
Created August 2, 2017 07:27
Show Gist options
  • Save extremecoders-re/0a3ce417d149915dc5933114788bdcda to your computer and use it in GitHub Desktop.
Save extremecoders-re/0a3ce417d149915dc5933114788bdcda to your computer and use it in GitHub Desktop.
$ python my_aegg.py
WARNING | 2017-08-02 12:47:21,314 | claripy | Claripy is setting the recursion limit to 15000. If Python segfaults, I am sorry.
WARNING | 2017-08-02 12:47:22,664 | cle.loader | The main binary is a position-independent executable. It is being loaded with a base address of 0x400000.
INFO | 2017-08-02 12:47:22,725 | aegg.aegg | Start hacking ...
WARNING | 2017-08-02 12:47:46,590 | simuvex.plugins.symbolic_memory | Concretizing symbolic length. Much sad; think about implementing.
WARNING | 2017-08-02 12:48:08,428 | simuvex.engine.successors | Exit state has over 257 possible solutions. Likely unconstrained; skipping. <BV32 (if (((0xffbfdfa1 + (if (<...> == <...>) then 0x402060 else (if <...> then <...> else <...>)))[31:5] == 0x0) && ((1 + (if (<...>[7:0] == 0) then 0 else (if (<...> == <...>) then 1 else (if <...> then <...> else <...>)))) <= 25)) then 0 else file_/dev/stdin_0_0_3_2456[207:200]) .. (if (((0xffbfdfa1 + (if (<...> == <...>) then 0x402060 else (if <...> then <...> else <...>)))[31:5] == 0x0) && ((1 + (if (<...>[7:0] == 0) then 0 else (if (<...> == <...>) then 1 else (if <...> then <...> else <...>)))) <= 24)) then 64 else file_/dev/stdin_0_0_3_2456[199:192]) .. (if (((0xffbfdfa1 + (if (<...> == <...>) then 0x402060 else (if <...> then <...> else <...>)))[31:5] == 0x0) && ((1 + (if (<...>[7:0] == 0) then 0 else (if (<...> == <...>) then 1 else (if <...> then <...> else <...>)))) <= 23)) then 6 else file_/dev/stdin_0_0_3_2456[191:184]) .. (if (((0xffbfdfa1 + (if (<...> == <...>) then 0x402060 else (if <...> then <...> else <...>)))[31:5] == 0x0) && ((1 + (if (<...>[7:0] == 0) then 0 else (if (<...> == <...>) then 1 else (if <...> then <...> else <...>)))) <= 22)) then 125 else file_/dev/stdin_0_0_3_2456[183:176])>
DEBUG | 2017-08-02 12:48:08,599 | pwnlib.elf.elf | PLT 0x440 read
DEBUG | 2017-08-02 12:48:08,600 | pwnlib.elf.elf | PLT 0x450 printf
DEBUG | 2017-08-02 12:48:08,601 | pwnlib.elf.elf | PLT 0x460 strcpy
DEBUG | 2017-08-02 12:48:08,601 | pwnlib.elf.elf | PLT 0x470 __libc_start_main
DEBUG | 2017-08-02 12:48:08,602 | pwnlib.elf.elf | PLT 0x480 __cxa_finalize
DEBUG | 2017-08-02 12:48:08,603 | pwnlib.elf.elf | PLT 0x488 __gmon_start__
[*] '/home/ec/Desktop/expgen/vul'
Arch: i386-32-little
RELRO: Partial RELRO
Stack: No canary found
NX: NX disabled
PIE: PIE enabled
RWX: Has RWX segments
INFO | 2017-08-02 12:48:08,663 | pwnlib.elf.elf | '/home/ec/Desktop/expgen/vul'
Arch: i386-32-little
RELRO: Partial RELRO
Stack: No canary found
NX: NX disabled
PIE: PIE enabled
RWX: Has RWX segments
WARNING | 2017-08-02 12:48:08,783 | aegg.analyzer | ip: <BV32 (if (((0xffbfdfa1 + (if (file_/dev/stdin_0_0..., ip.op != "extract"
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Verifying by script
Verifying by script
**************verify
Verifying by script
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment