產生一段特製的pattern蓋EIP之後再推算覆蓋長度(buffer到EIP的offset)
https://wiremask.eu/tools/buffer-overflow-pattern-generator/ http://projects.jason-rush.com/buffer-overflow-eip-offset-string-generator
tools/exploit/pattern_create.rb 長度 tools/exploit/pattern_offset.rb EIP值