[pwntools] 함수 offset 계산 방법

 

[테스트 코드]

 

from pwn import * elf = ELF('./a.out') #rop = ROP(elf) libc = ELF("/lib/i386-linux-gnu/libc.so.6") printf_system_offset = libc.symbols['printf'] - libc.symbols['system']   printf_plt = elf.plt['printf'] printf_got = elf.got['printf'] write_plt = elf.plt['write'] write_got = elf.got['write']   libc_start_main = elf.plt['__libc_start_main']   print '[*] printf@plt : %s' % str(hex(printf_plt)) print '[*] printf@got : %s' % str(hex(printf_got)) print '[*] write@plt : %s' % str(hex(write_plt)) print '[*] write@got : %s' % str(hex(write_got)) print '[*] printf - system : %s(%s)' % (str(hex(printf_system_offset)), str(int(printf_system_offset))) print '[*] lib_strat_main : %s' % str(hex(libc_start_main))

 

[실행 결과]

 

[*] printf@plt : 0x8048500 [*] printf@got : 0x804c010 [*] write@plt : 0x8048590 [*] write@got : 0x804c034 [*] printf - system : 0xefd0(61392) [*] lib_strat_main : 0x8048580