Al-Azif

7.55 Exploit Patches

Jan 22nd, 2021
1,140
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. // Kill sysveri
  2. mov byte ptr [rdi + 0x636850], 0xC3
  3. mov dword ptr [rdi + 0x637380], 0xC3C03148
  4. mov dword ptr [rdi + 0x636600], 0xC3C03148
  5. mov dword ptr [rdi + 0x636DB0], 0xC3C03148
  6. mov byte ptr [rdi + 0x2662B00], 0x00
  7.  
  8. // mprotect
  9. mov rsi, 0x8B49909090909090
  10. mov qword ptr [rdi + 0x3014C8], rsi
  11.  
  12. // setuid
  13. mov dword ptr [rdi + 0x37A320], 0xB8
  14.  
  15. // Allow syscall everywhere
  16. mov dword ptr [rdi + 0x490], 0x0
  17. mov word ptr [rdi + 0x4B9], 0x9090
  18. mov word ptr [rdi + 0x4BD], 0x9090
  19. mov word ptr [rdi + 0x4C6], 0xE990
  20.  
  21. // RWX mmap
  22. mov byte ptr [rdi + 0xDB17D], 0x37
  23. mov byte ptr [rdi + 0xDB180], 0x37
  24.  
  25. // Patch dynlib_load_prx
  26. mov word ptr [rdi + 0x451E04], 0xE990
  27.  
  28. // DLSYM
  29. mov word ptr [rdi + 0x4523C4], 0xE990
  30. mov dword ptr [rdi + 0x29A30], 0xC3C03148
  31.  
  32. // Syscall 11
  33. mov qword ptr [rdi + 0x1122550], 0x2
  34. lea rsi, [rdi + 0x1F842]
  35. mov qword ptr [rdi + 0x1122558], rsi
  36. mov dword ptr [rdi + 0x112257C], 0x1
  37.  
RAW Paste Data