From 7204eca4a28c681b5ec4801a236f521c69d0e70b Mon Sep 17 00:00:00 2001
From: spv420 <spv@spv.sh>
Date: Sun, 31 Jul 2022 22:29:54 -0400
Subject: fuck

---
 src/stage4/main.js | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

(limited to 'src/stage4/main.js')

diff --git a/src/stage4/main.js b/src/stage4/main.js
index 660db75..980525b 100644
--- a/src/stage4/main.js
+++ b/src/stage4/main.js
@@ -12,6 +12,7 @@ var AF_INET = 2;
 var SOCK_DGRAM = 2;
 var SOCK_DGRAM = 2;
 var IPPROTO_UDP = 17;
+var UNSLID_BASE = 0x4000;
 
 function prep_shit() {
 	string_ref = scall("JSStringCreateWithUTF8CString", "victim");
@@ -30,7 +31,20 @@ function csbypass_wrapper() {
 }
 
 function csbypass_stage4() {
-	csbypass_wrapper();
+//	csbypass_wrapper();
+
+	var np = new native_ptr(UNSLID_BASE + (get_our_slide() << 12));
+	var native_ptr_u16 = native_ptr_type(2, u8x2_to_u16, u16_to_u8x2);
+	var native_ptr_u32 = native_ptr_type(4, u8x4_to_u32, u32_to_u8x4);
+	var native_ptr_u16_2 = native_ptr_type(2, u8x2_to_u16, u16_to_u8x2);
+
+	var np1 = new native_ptr_u16(UNSLID_BASE + (get_our_slide() << 12));
+	var np2 = new native_ptr_u32(UNSLID_BASE + (get_our_slide() << 12));
+	var np3 = new native_ptr_u16_2(UNSLID_BASE + (get_our_slide() << 12));
+
+//	p0laris_log("%s", Proxy.toString());
+	p0laris_log("%x %x %x %x", np1.deref(), np2.deref(), np3.deref());
+
 	return 0;
 }
 
-- 
cgit v1.2.3