re: Tiny Windows 2000 Reverse Connect

["Dave Korn" <davek_throwaway () hotmail com>]

----- Original Message -----
From: "H D Moore" <sflist () digitaloffense net>
> Sent: Monday, October 06, 2003 10:11 PM

> I managed to get a null-free version right around 200 bytes, but any really 
> small XOR encoder will work as well. This technique, dubbed 'Vampiric 
> Imports' is implemented in the following code:
> - http://metasploit.com/sc/win2000_vampiric_connector.asm

 Very nice.  I reckon you could make it even smaller quite easily though; 
surely in most cases, any program that you send an overflow to down a socket 
will already have called WSAStartup for you, and you could just omit that 
part of the code ?

 cheers,
     DaveK

_________________________________________________________________
Hotmail messages direct to your mobile phone http://www.msn.co.uk/msnmobile