A shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability.
1
vote
1answer
178 views
Reliable shellcode testing
Code such as the following is supposed to be able to "test" shellcode, namely execute it.
char shellcode[] = "...";
int main(int argc, char **argv)
{
int (*func)();
func = (int (*)()) ...
0
votes
1answer
26 views
Accidentally overwriting my own instructions during buffer overflow
I am trying to learn how to do a basic buffer overflow attack. I have working assembly and correct shellcode (no null bytes or references to other data). The assembly is as follows:
;clear out ...
0
votes
1answer
338 views
how to decode the shellcode \x61\x6c
There is a question hidden in the shellcode, i need to find it
...
7
votes
0answers
127 views
writing shellcode: why my shellcode won't work?
I'm currently writing a shellcode that exploit a target program that uses the puts function. The program looks like this:
#include <stdio.h>
main() {
char buf[123];
puts(gets(buf));
}
...
1
vote
0answers
23 views
Error in compiling a working MIPS shell code in MARS (MIPS simulator) about Syscall
I want to compile an assembly code of a shell code of MIPS in the MARS simulator shell code example is:
lui $6,0x4321
ori $6,$6,0xfedc
lui $5,0x2812
ori $5,$5,0x1969
lui ...
1
vote
0answers
105 views
Segmentation fault when testing shellcode
I am trying to execute a shellcode, however I am facing a problem to execute it.
(I am using a x86 32bit CPU)
char shellcode[] =
// <_start>
...
0
votes
0answers
18 views
shellcode write file not working
I wanted to build a little shellcode which writes Test\n in a file. First i created an assembly programm:
section .data
msg db "Test",0x0a,0x0d
file db "./test.txt"
section ...
0
votes
0answers
11 views
os x.4.11 tiger terminal-based programming environment
i am trying to understand libraries, etc (novice)
possibly turning a g4 mac mini into an exited-to-shell router kind of thing.
gcc, perl, python.. can you launch an application in a graphical ...
0
votes
0answers
48 views
Rewrite fork to syscall on osx
I am trying to convert some fork/execve/read call code to use only syscalls. DTrace shows that syscalls functions are executed successfully, but code is not working. While tracing the code before ...
0
votes
0answers
53 views
locating null bytes in shellcode
I have injected my exit syscall shellcode
bb 14 00 00 00
b8 01 00 00 00
cd 80
inspite of having null bytes it works.I don't know why.
On the other hand,when I try to execute a ...
0
votes
0answers
78 views
what does this assembly exploitation code mean?
I want a help to understand this exploitation demo which im studying for my exam.. I don't have any idea about anything of it, so please help.. If you can please comment on each line so i can ...
0
votes
0answers
70 views
writing freebsd x86 shellcode
I am writing some FreeBSD x86 shellcode.
before I call int $0x80, I putted some junk value(eax:5) instead of
a valid return address, but it works fine.
can someone explain me why?
below is code ...
0
votes
0answers
33 views
how does pattern matching work in shellcode detection
As far as I know, one of the method of shellcode detection is the pattern matching. However I have searched a lot about this, but can't find anything.
Could someone explain in detail how does the ...
0
votes
0answers
74 views
Shellcode identification by java code
Is it possible to detect and identify what kind of shellcode it is by given the shellcode source code.?
For example, I known the C99 souce code, how can I detect and identify that is C99? Is it ...
0
votes
0answers
408 views
“bin/sh: can't access tty; job control turned off” error when running shellcode
I'm writing shellcode to exploit a buffer overflow vulnerability on a server. To do so I have port binding shellcode that I send to the server and then I run (from a linux terminal) the command ...
