shellcode tutorial

《shellcode tutorial》由会员上传分享，免费在线阅读，更多相关内容在行业资料-天天文库。

1、ShellcodingforLinuxandWindowsTutorialwithexamplewindowsandlinuxshellcodebystevehannahttp://www.vividmachines.com/steve./c/.hanna@gmail/.comforpremiercomputersecurityresearchcheckout:http://www.sigmil.org/TableofContentsChangeLog2FrequentlyAskedQuestions

2、21.Whatisshellcoding?22.Therearetonsofshellcoderepositoriesallaroundtheinternet,whyshouldIwritemyown?23.WhatdoIneedtoknowbeforeIbegin?24.WhatarethedifferencesbetweenwindowsshellcodeandLinuxshellcode?35.So,whataboutwindows?HowdoIfindtheaddressesofmyneede

3、dDLLfunctions?Don'ttheseaddresseschangewitheveryservicepackupgrade?36.What'sthehypewithmakingsuretheshellcodewon'thaveanyNULLbytesinit?NormalprogramshavelotsofNULLbytes!37.WhydoesmyshellcodeprogramcrashwhenIrunit?48.CanIcontactyou?49.Whydidyouuseintelsy

4、ntax,UGHHH?!410.Whydoesmyprogramkeepsegfaulting?Yes,Ireaditem7above,butitSTILLcrashes.4RequiredTools5OptionalTools5LinuxShellcoding6Example1-MakingaQuickExit6Example2-SayingHello7Example3-SpawningaShell9WindowsShellcoding11Example1-SleepisfortheWeak!11E

5、xample2-AMessagetosay"Hey"12Example3-AddinganAdministrativeAccount17AdvancedShellcoding20FurtherReading23Conclusion23ChangeLog1.Created-July20042.AdvancedShellcodingMethodsSectionAdded-Sept20053.UpdatedFaqregardingstackrandomization.-June2007FrequentlyA

6、skedQuestions1.Whatisshellcoding?Incomputersecurity,shellcodinginitsmostliteralsense,meanswritingcodethatwillreturnaremoteshellwhenexecuted.Themeaningofshellcodehasevolved,itnowrepresentsanybytecodethatwillbeinsertedintoanexploittoaccomplishadesiredtask

7、.2.Therearetonsofshellcoderepositoriesallaroundtheinternet,whyshouldIwritemyown?Yes,youarecorrect,therearetonsofrepositoriesallaroundtheinternetforshellcoding.Namely,themetasploitprojectseemstobethebest.Writinganexploitcanbedifficult,whathappenswhenallo

8、ftheprewrittenblocksofcodeceasetowork?Youneedtowriteyourown!Hopefullythistutorialwillgiveyouagoodheadstart.3.WhatdoIneedtoknowbeforeIbegin?Adecentunderstandingofx86assembly,C,andknowledgeoftheLinuxandWindowsoperatingsystems.4.Wha