killchain-compendium/Exploits/Binaries/pwntools Specifics.md

# pwntools

## Memory Addresses of ELF Binary
* Find address of function and use it on $eip
```python
p = process(<binary>)
elf = ELF(<binary>)
__function = elf.symbol.<functionName>
payload = fit({
    42: __function # Length measured via cyclic 
})
p.sendline()
proc.interactive() 
```
restructured Exploits 2022-11-13 22:38:01 +01:00			`# pwntools`

			`## Memory Addresses of ELF Binary`
			`* Find address of function and use it on $eip`
			```python
			`p = process(<binary>)`
			`elf = ELF(<binary>)`
			`__function = elf.symbol.<functionName>`
			`payload = fit({`
			`42: __function # Length measured via cyclic`
			`})`
			`p.sendline()`
			`proc.interactive()`
			```