Hosting Provided By

Re: win32 shellcoding

From: wirepair <wirepair(at)roguemail.net>
Date: Tue Jun 03 2003 - 14:51:38 EDT

On Sun, 1 Jun 2003 18:01:08 -0400
"deepcode" <deepcode@sympatico.ca> wrote:
>Hey people.

I began investigating this as well, this may help, but i'm still confused on how people write such tiny connect back shellcode (kralor's webdav exploit comes to mind). http://sh0dan.org/files/llacmd.txt
-wire

Also this is hardcoded offsets for GetProcAddress and LoadLibraryA.. there are examples files for the addresses. check out
http://www.harmonysecurity.com/kungfoo.html

For the best comics, toys, movies, and more, please visit <http://www.tfaw.com/?qt=wmf> Received on Wed Jun 4 11:40:05 2003

This message: [ Message body ]
Next message: Rahul Chander Kashyap: "Re: win32 shellcoding"
Previous message: Shaun Clowes: "Re: Gera's Insecure Programing abo7"
In reply to deepcode: "win32 shellcoding"
Next in thread: Rahul Chander Kashyap: "Re: win32 shellcoding"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:40 EDT