Vulnerability Development mailing list archives

Re: win32 shellcoding

From: "wirepair" <wirepair () roguemail net>
Date: Tue, 03 Jun 2003 11:51:38 -0700

On Sun, 1 Jun 2003 18:01:08 -0400
 "deepcode" <deepcode () sympatico ca> wrote:

Hey people.
I've written exploits and shellcodes for *nix systems,butcannot find any good articles about win32 shellcoding,anyone willing to give me some help? An example maybe.
I am really focusing on the shellcode, not the exploit.

I began investigating this as well, this may help, but i'mstill confused on how people write such tiny connect backshellcode (kralor's webdav exploit comes to mind).http://sh0dan.org/files/llacmd.txt

-wire

Also this is hardcoded offsets for GetProcAddress andLoadLibraryA.. there are examples files for the addresses.check outhttp://www.harmonysecurity.com/kungfoo.html

_____________________________
For the best comics, toys, movies, and more,
please visit <http://www.tfaw.com/?qt=wmf>

Current thread:

win32 shellcoding deepcode (Jun 03)
- Re: win32 shellcoding wirepair (Jun 04)
- Re: win32 shellcoding Rahul Chander Kashyap (Jun 04)
- Message not available
  - Re: win32 shellcoding deepcode (Jun 04)
- <Possible follow-ups>
- Re: win32 shellcoding Olivier DEMBOUR (Jun 05)