crazylazy.info

- the Blog of Marius Ciepluch

Syndicate

Projects

mirrored Conference materials

BinVis

Git projects

Shared notes

Search

Flattr

If you like this, you can use flattr. ;)

Imprint

About
eMail: wishinet at gmail . com
PGP ID: 0xCCCA5E74

Jabber: wishi@jabber.ccc.de

Recent blog posts

wishinet: checking out GDB with Dtrace support for OS X... (1.9.2). Should be interesting.
wishinet: RT @bfoo: Worth reading: http://merbist.com/2010/08/22/discussion-with-a-java-switcher/
wishinet: nächstes Jahr Taikai in Nürnberg (http://www.taikai.de/) - und nu aus Nürnberg total groggy in die Falle! ;)

Links

UnprotectedHex - about formal software verification
Sean's blog

Xecurity - a security feed collecter
Reddit RCE group

Freedom To Tinker
Emergent Chaos

Woodmann RCE forums
OpenRCE community forums

SecViz - security data visualization
DAVIX Live - for security metrics
Hex Live
Security Metrics

Immunity's Free Software
Core Security's OpenSouce research
Zynamics Blog

Centralops
Serversniff

DNS

0x41 - weekly exploitation matters - Shellcode and frameworks

Sun, 03/28/2010 - 13:50 | wishi

A non Un-Shakespearian matter

There're mainly two things I wanted to write about regarding Shellcode. However my time is limited... and therefore I kept it short and simple this time.

The two things this mainly is about are:

dnscat
(lesser known) Shellcode tools

If your exploit is a rocket, it targets the vulnerable entry point, and the rocket's load is the Shellcode. Normally, when it comes to memory corruptions due exploitation attempts, the program flow alteration directs the EIP into this (pay)load. So instead of crashing your program continues doing what you wanted it to do.
At the point where the EIP doesn't get NOPs e. g. it expects carefully formated instructions (read: Shellcode).

Read more »

wishi's blog |

Add new comment |

1+[encrypted]+#b94+ |

Tags: C, DNS, Exploits, Python, shell-haqing, Windows security, wishi's weekly squib

Save the nature. Don't print this!

I provide textual exports for every blog entry. However let's save the nature together. The nature is everything around us. Every being should be respected. Save the nature - don't print too much.

Die Umgehung dieser Ausdrucksperre ist nach § 95a UrhG verboten!
Inhaltlich Verantwortlicher gemäß § 10 Absatz 3 MDStV: Marius Ciepluch - Anschrift via eMail. Die eMail Adresse entnehmen sie dem Impresseum dieser englischsprachigen Seite.
Aus Datenschutzgründen habe ich weder offiziellen noch behördlichen Schriftverkehr via eMail. Dazu ist die postalische, beim Dienstleister hinterlegte, Anschrift zu verwenden.

Datenerfassung

Es werden keine personenbezogenen Daten erfasst. Logdaten werden anonymisiert.