Fixed an off-by-one error in the fingerprinting randomization

2019-01-14 17:42:59 -06:00 · 2019-01-14 17:42:59 -06:00 · ddd9ab2041
parent 3a48282138
commit ddd9ab2041
2 changed files with 2 additions and 2 deletions
--- a/lib/msf/util/java_deserialization.rb
+++ b/lib/msf/util/java_deserialization.rb
@ -53,7 +53,7 @@ class JavaDeserialization
      end

      # Replace "ysoserial\/Pwner" timestamp string with randomness for evasion
-      bytes.gsub!(/ysoserial\/Pwner000000000000000/, Rex::Text.rand_text_alphanumeric(30))
+      bytes.gsub!(/ysoserial\/Pwner00000000000000/, Rex::Text.rand_text_alphanumeric(29))

      return bytes
    else 
--- a/tools/payloads/ysoserial/find_ysoserial_offsets.rb
+++ b/tools/payloads/ysoserial/find_ysoserial_offsets.rb
@ -63,7 +63,7 @@ def generatePayload(payloadName,searchStringLength)
    #STDERR.puts "  Successfully generated #{payloadName} using #{YSOSERIAL_BINARY}"

    # Strip out the semi-randomized ysoserial string and trailing newline
-    payload.gsub!(/#{YSOSERIAL_RANDOMIZED_HEADER}[[:digit:]]+/, 'ysoserial/Pwner000000000000000')
+    payload.gsub!(/#{YSOSERIAL_RANDOMIZED_HEADER}[[:digit:]]+/, 'ysoserial/Pwner00000000000000')
    return payload
  end
 end