[framework] Creating Shellcode

Ty Miller tyronmiller at gmail.com
Thu Feb 7 13:57:39 CST 2008 

Hey nnp,

It would definitely make life easier, however, I have to pass the entire
payload in the exploit.

Ty



On 2/7/08, nnp <version5 at gmail.com> wrote:
>
> Hey,
>
> Does your shellcode have to be that program? Would it be feasible to use
> an automatic download/run payload and just grab your program from elsewhere?
> It would probably make your life a lot easier.
>
>
> nnp
>
> On Feb 7, 2008 9:53 AM, Ty Miller <tyronmiller at gmail.com> wrote:
>
> > After having a look at Hellkit, it looks like it does a fair bit of
> > useful stuff for creating shellcode. One of the downsides is that it says
> > that I can't use functions within my C program for Hellkit to work.
> >
> > My program is currently 370 lines of C code and has 5 different
> > functions for code reuse, with a few of them being about 40 or 50 lines
> > long. I can merge the functions into the main function, but this is going to
> > make the program a fair bit larger, and I assume that this is going to make
> > the shellcode a fair bit larger. I'm already concerned about the size of the
> > shellcode as it stands.
> >
> > Is this correct? What do you guys suggest?
> >
> > Besides having limited space with stack exploits, are there any other
> > downsides to having large shellcode for other types of exploits?
> >
> > Thanks,
> > Ty
> >
> >
> > On 2/7/08, base64 <basehat at gmail.com> wrote:
> > >
> > > hellkit and some similar unix tools can be found at :
> > > http://packetstormsecurity.nl/
> > >
> > > I am unaware of a likewise tool for win32, however milw0rm has a
> > > fairly large repository of interesting shellcodes.
> > >
> > > On Feb 6, 2008 3:34 PM, Ty Miller <tyronmiller at gmail.com> wrote:
> > >
> > > > Hey All,
> > > >
> > > > Does anyone know where I can get my hands on Hellkit? Does
> > > > Metasploit have a similar function?
> > > >
> > > > Any other tools or techniques that you would like to recommend to
> > > > convert a C program to shellcode would also be great?
> > > >
> > > > Thanks,
> > > > Ty
> > > >
> > > >
> > >
> > >
> > >
> > > --
> > >
> > > Best Regards,
> > > Adrian Castro
> > > Senior Software Engineer
> > > (310)765-0627
> >
> >
> >
> >
>
>
>
> --
> http://www.smashthestack.org
> http://www.unprotectedhex.com
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://spool.metasploit.com/pipermail/framework/attachments/20080208/4bbdf5ee/attachment.htm

More information about the framework mailing list