r2: limit gadget search to exec privilege sections

Signed-off-by: dusoleil <howcansocksbereal@gmail.com>
author: dusoleil <howcansocksbereal@gmail.com> 2023-03-19 09:26:08 -0400
committer: dusoleil <howcansocksbereal@gmail.com> 2023-03-19 09:26:08 -0400
commit: e4793b798fe84c856c76817814b3867d3ce7b85e (patch)
tree: 1577f9d983fb01337399839bd76e63ce24fe5232
parent: 990fb887e08811ed0017045bd7064b244fa81285 (diff)
download: sploit-e4793b798fe84c856c76817814b3867d3ce7b85e.tar.gz
sploit-e4793b798fe84c856c76817814b3867d3ce7b85e.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/sploit/rev/r2.py b/sploit/rev/r2.py
index 7101f07..dd78edb 100644
--- a/sploit/rev/r2.py
+++ b/sploit/rev/r2.py
@@ -10,7 +10,7 @@ import json
 import re
 
 def run_cmd(binary,cmd):
-    return run_cmd_cached(['r2','-q','-c',cmd,'-e','scr.color=false','-e','rop.len=10',binary])
+    return run_cmd_cached(['r2','-q','-c',cmd,'-e','scr.color=false','-e','rop.len=10','-e','search.in=io.maps.x',binary])
 
 def get_elf_symbols(elf):
     ilog(f'Retrieving symbols of {elf} with r2...')
author	dusoleil <howcansocksbereal@gmail.com>	2023-03-19 09:26:08 -0400
committer	dusoleil <howcansocksbereal@gmail.com>	2023-03-19 09:26:08 -0400
commit	e4793b798fe84c856c76817814b3867d3ce7b85e (patch)
tree	1577f9d983fb01337399839bd76e63ce24fe5232
parent	990fb887e08811ed0017045bd7064b244fa81285 (diff)
download	sploit-e4793b798fe84c856c76817814b3867d3ce7b85e.tar.gz sploit-e4793b798fe84c856c76817814b3867d3ce7b85e.zip