[Noisebridge-discuss] nop slide/sleds?
dpc
weasel at meer.net
Tue Oct 6 21:07:08 UTC 2009
"Dr. Jesus" <j at hug.gs> writes:
> On Tue, Oct 6, 2009 at 1:40 PM, dpc <weasel at meer.net> wrote:
>> anyway, the metasploit one seems to use chains of nop-ish instructions
>> but the varying patterns are helpful for 'tagging'.
>
> Opcodes 0x91, 0x92, and 0x93 work if you do them in sequences of 2*n,
> where n is an integer.
i think this is what metasploit is doing, but these are 'obviously' nop
instructions to be 'removed'. i'm not quite sure the tool is smart
enough to notice pairing though it has surprised me by peepholing some
other stuff away.
\p
---
The sun exactly at noon is exactly beginning to go down. And a creature
exactly when he is born is exactly beginning to die. - Hu Shih
More information about the Noisebridge-discuss
mailing list