Metasploit mailing list archives

Re: http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising.

From: HD Moore <hdm () metasploit com>
Date: Sun, 29 Nov 2009 08:48:53 -0600

On Sun, 2009-11-29 at 11:03 +0200, Konrads Smelkovs wrote:

http://www.cs.jhu.edu/~sam/ccs243-mason.pdf
Sounds promising. I guess with this there is really shikata na gai :)


The technique sounds interesting, but at ~2000 bytes for a single system
call on Linux, this isn't practical without an egghunter, which would
defeat the purpose of using this method in the first place. I was
annoyed that they refused to publish an example of the method due to
"responsibility" concerns.

-HD

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising. I guess with this there is really shikata na gai :) Konrads Smelkovs (Nov 29)
- Re: http://www.cs.jhu.edu/~sam/ccs243-mason.pdf Sounds promising. HD Moore (Nov 29)