Vulnerability Development mailing list archives
Re: Generating shellcode
From: Justin Lundy <jbl () subterrain net>
Date: Sun, 19 May 2002 12:04:28 -0700
Ryan: Consider examining "Hellkit" by stealth. You provide it with your shellcode in C, and it will extract the opcodes, remove null bytes, and give you the shellcode in hexidecimal. It was designed for linux/x86. The README inside the tarball explains the workings of the system, and it comes with sample exploits. It can also extract the opcodes and remove null bytes from your assembly too. The website where I originally downloaded this is unavailable (www.kalug.lug.net/stealth): so I have mirrored it here: http://www.subterrain.net/tools/exploit-development/hellkit/ Signed, -jbl On Sun, May 19, 2002 at 10:29:05AM -0400, Ryn wrote:
Howdy, Do any documents exist explaining how to covert assembly op codes and operands to hex? I can use "gdb" or "dis" on Solaris to get: bc 10 20 00 clr %fp e0 03 a0 40 ld [%sp + 64], %l0 a2 03 a0 44 add %sp, 68, %l1 9c 23 a0 20 sub %sp, 32, %sp 80 90 00 01 orcc %g0, %g1, %g0 I want to see how to get column 1 - 4 by hand. Thanks for any info, Ryan
-- ---=[ Practice is not a matter of years and months. It is concentration. ]=-- ---=[ Email: jbl () subterrain net o0o Web: http://www.subterrain.net/~jbl/ ]=-- ---=[ PGP fingerprint: 345A A958 67A3 A215 0270 5102 8002 8B4C 3803 A9BC ]=--
Current thread:
- Generating shellcode Ryn (May 19)
- Re: Generating shellcode Simon 'corecode' Schubert (May 19)
- Re: Generating shellcode Roland Postle (May 19)
- Re: Generating shellcode Ulf H{rnhammar (May 19)
- Re: Generating shellcode Fyodor (May 19)
- Re: Generating shellcode Justin Lundy (May 19)
- Re: Generating shellcode woof (May 20)
- <Possible follow-ups>
- Re: Generating shellcode Sergei Kostov (May 20)
- Re: Generating shellcode SpaceWalker (May 20)
- RE: Generating shellcode Sinan Eren (May 20)
- Re: Generating shellcode Simon 'corecode' Schubert (May 19)