Metasploit mailing list archives
No room for shellcode
From: patrick at aushack.com (Patrick Webster)
Date: Sun, 3 May 2009 19:59:04 +1000
Yeah try adjusting ESP first... Otherwise you can use either the existing jmp esp return address to hit your nops, but instead swap the nops for a jump backwards to the start of the 'A's (5 bytes), or use the EggHunter payload (about 32 bytes) which will search the process space for the payload & execute it... As a reference, I used this for the Ximati http server module due to similar space issues. -Patrick -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20090503/27f3d87d/attachment.htm>
Current thread:
- No room for shellcode DB Allen (May 02)
- No room for shellcode egypt at metasploit.com (May 02)
- No room for shellcode Patrick Webster (May 03)
- No room for shellcode DB Allen (May 03)
- No room for shellcode H D Moore (May 03)
- No room for shellcode DB Allen (May 03)
- No room for shellcode H D Moore (May 03)
- No room for shellcode DB Allen (May 04)
- No room for shellcode Patrick Webster (May 05)
- No room for shellcode Patrick Webster (May 03)
- No room for shellcode egypt at metasploit.com (May 02)
- No room for shellcode Kim Guldberg (May 03)