Metasploit mailing list archives
Re: http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising.
From: HD Moore <hdm () metasploit com>
Date: Sun, 29 Nov 2009 08:48:53 -0600
On Sun, 2009-11-29 at 11:03 +0200, Konrads Smelkovs wrote:
http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising. I guess with this there is really shikata na gai :)
The technique sounds interesting, but at ~2000 bytes for a single system call on Linux, this isn't practical without an egghunter, which would defeat the purpose of using this method in the first place. I was annoyed that they refused to publish an example of the method due to "responsibility" concerns. -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising. I guess with this there is really shikata na gai :) Konrads Smelkovs (Nov 29)
- Re: http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising. HD Moore (Nov 29)