Windows/x86 - WinExec PopCalc PEB & Export Directory Table NullFree Dynamic Shellcode 178 bytes

; Windows/x86 - WinExec PopCalc PEB & Export Directory Table NullFree Dynamic Shellcode 178 bytes ; Description: ; This is a shellcode that pop a calc.exe. The shellcode iuses ; the PEB method to locate the baseAddress of the required module and the Export Directory Table ; to locate symbols. Als...

win32 PEB!NtGlobalFlags shellcode 14 bytes

No description provided by source. / PEB!NtGlobalFlags 14 BYTES Author: Koshi Description: Uses PEB method to determine whether a debugger is attached to the running proccess or not. No 9x. : Length: 14 Bytes Registers Used: EAX,ESI,ESP Compiled: jpXV34dd3v09Fh / / 00401000 6A 70 PUSH 70 00401002...

win32 PEB!NtGlobalFlags shellcode 14 bytes

Exploit for win32 platform in category shellcode ========================================== win32 PEB!NtGlobalFlags shellcode 14 bytes ========================================== / PEB!NtGlobalFlags 14 BYTES Author: Koshi Description: Uses PEB method to determine whether a debugger is attached to...

win32 PEB!NtGlobalFlags shellcode 14 bytes

win32 PEB!NtGlobalFlags shellcode 14 bytes. Shellcode exploit for win32 platform / PEB!NtGlobalFlags 14 BYTES Author: Koshi Description: Uses PEB method to determine whether a debugger is attached to the running proccess or not. No 9x. : Length: 14 Bytes Registers Used: EAX,ESI,ESP Compiled:...

win32 PEB Kernel32.dll ImageBase Finder (Ascii Printable) 49 bytes

No description provided by source. / PEB Kernel32.dll ImageBase Finder Ascii Printable Author: Koshi Description: Uses PEB method to locate the ImageBase of Kernel32.dll ONLY supports NT/2K/XP.. sorry no 9X. ImageBase will be returned in EAX. No null bytes, obviously, so no need to encode really...

win32 PEB Kernel32.dll ImageBase Finder Alphanumeric 67 bytes

No description provided by source. / PEB Kernel32.dll ImageBase Finder Alphanumeric Author: Koshi Description: Uses PEB method to locate the ImageBase of Kernel32.dll ONLY supports NT/2K/XP.. sorry no 9X. ImageBase will be returned in EAX. No null bytes, obviously, so no need to encode really...

win32 PEB Kernel32.dll ImageBase Finder Ascii Printable 49 bytes

win32 PEB Kernel32.dll ImageBase Finder Ascii Printable 49 bytes. Shellcode exploit for win32 platform / PEB Kernel32.dll ImageBase Finder Ascii Printable Author: Koshi Description: Uses PEB method to locate the ImageBase of Kernel32.dll ONLY supports NT/2K/XP.. sorry no 9X. ImageBase will be...

win32 PEB Kernel32.dll ImageBase Finder Alphanumeric 67 bytes

win32 PEB Kernel32.dll ImageBase Finder Alphanumeric 67 bytes. Shellcode exploit for win32 platform / PEB Kernel32.dll ImageBase Finder Alphanumeric Author: Koshi Description: Uses PEB method to locate the ImageBase of Kernel32.dll ONLY supports NT/2K/XP.. sorry no 9X. ImageBase will be returned ...

win32 PEB Kernel32.dll ImageBase Finder Alphanumeric 67 bytes

Exploit for win32 platform in category shellcode ============================================================= win32 PEB Kernel32.dll ImageBase Finder Alphanumeric 67 bytes ============================================================= / PEB Kernel32.dll ImageBase Finder Alphanumeric Author: Koshi...

Windows 9x/NT/2k/XP PEB method 35 bytes

No description provided by source. /This is a 35 byte C implementation of the use of the PEB method to get the kernel32 base address on Windows. This is generic code designed to run on both Windows 9x and NT based systems. The code has been optimized to not have any 00h bytes so that you wont hav...

windows 9x/NT/2k/XP PEB method 29 bytes

Exploit for win32 platform in category shellcode ======================================= Windows 9x/NT/2k/XP PEB method 29 bytes ======================================= // // PEB way of getting kernel32 imagebase by loco. // Compatible with all Win9x/NT based operating systems. // // Gives kernel...

Windows 9x/NT/2k/XP PEB method 29 bytes

Windows 9x/NT/2k/XP PEB method 29 bytes. Shellcode exploit for win32 platform // // PEB way of getting kernel32 imagebase by loco. // Compatible with all Win9x/NT based operating systems. // // Gives kernel32 imagebase in eax when executing. // 29 bytes, only eax/esi used. // // Originally...

windows 9x/NT/2k/XP PEB method 31 bytes

Exploit for win32 platform in category shellcode ======================================= Windows 9x/NT/2k/XP PEB method 31 bytes ======================================= / 004045F4 6A 30 PUSH 30 004045F6 59 POP ECX 004045F7 64:8B09 MOV ECX,DWORD PTR FS:ECX 004045FA 85C9 TEST ECX,ECX 004045FC 78 0C...

Windows 9x/NT/2k/XP PEB method 35 bytes

Windows 9x/NT/2k/XP PEB method 35 bytes. Shellcode exploit for win32 platform /This is a 35 byte C implementation of the use of the PEB method to get the kernel32 base address on Windows. This is generic code designed to run on both Windows 9x and NT based systems. The code has been optimized to...

windows 9x/NT/2k/XP PEB method 35 bytes

Exploit for win32 platform in category shellcode ======================================= Windows 9x/NT/2k/XP PEB method 35 bytes ======================================= /This is a 35 byte C implementation of the use of the PEB method to get the kernel32 base address on Windows. This is generic co...