Tag[shellcode] Recent Newest Questions

Powershell read shellcode from file

I have a powershell script which execute the shellcode. The output of above command is But when i save the shellcode in text file and execute ...

Why does initializing C local character arrays internally store the strings in different stack/data segments?

While working on some position-independent C injected shellcode, the strings were initially coded using this array initialization However, this cau ...

Cannot decode shellcode found on my server

Today I was blown away by the slowness of my website, so I decided to look what was wrong. Looked at apache2, server bandwidth, incorrect configs, cou ...

Thread Execution Differences Between CreateThread and CreateRemoteThread

I am trying to learn how to do process injections. First, I learn shellcode types in C/C++. However, I met a problem. One code is written by using Cre ...

Unable to inject shellcode in vulnerable program

I am studying the stack-base buffer overflow vulnerability. I would like to inject the following shellcode I wrote: I disabled ASLR (echo 0 > /p ...

get shell from memcpy

I've been trying to get shell from this function but nothing seems to work so what's happening here is that I have a variable of size 32 bytes and I'm ...

Converting shellcode hex bytes to text based inputs in Python for an unknown byte value '\x87'? Not a UTF-8 string?

So I am currently doing a beginner CTF challengeon pwnable.tw, the "start" challenge specifically. After reversing the challenge binary I found out th ...

Run raw shellcode inside c, compiled to exe

What i have tried: I opened the Opera-Setup installer .exe with HXD and exported it to c-sourcecode I put the shellcode of the output inside a m ...

C into shell code

This question was migrated from Information Security Stack Exchange because it ...

In a C program, does return address of a function frame point to the .text section?

I'm attempting to do a small ctf, and I'm trying to overflow the return address to inject shellcode. I expected the return address to be a very low on ...

Two shellcodes in one program result in segfault, how can I pass shellcode as parameter to a function?

I have two questions related to C programming and shellcoding (assembly) following below. Question 1: Can anyone provide an answer on why putting two ...

Generate shorter shellcode

Is there a way to generate short shellcode from a malware executable (PE/.exe)?, meaning sometimes some malware executable (PE/.exe) are big which whe ...

I'm doing a htb exercise and my shellcode doesn't give the right answer

The exercise goes: We examine the file with gdb and see that it is loading an encoded shellcode to the Stack and storing the xor decoding key in rbx. ...

How to change hex to shellcode bytes

Given the above values, how can I convert to shellcode bytes format. ...

How i can get this memory address in Protostar stack 5 CTF

I found this solution for solving protostar's ctf stack5 challenge. The solution works, but I can't figure out how in the stack diagram section we get ...

Exploit the code calling call_me function + use of shellcode

I need to exploit the following code but not sure how to do it. The idea is to exploit the code trying to call the function which is not used call ...

How can I exploit a segfault and run a shell command?

Following this: How can I exploit a buffer overflow? I have a code compiled using -fno-stack-protector: but unable to execute the shellcode functi ...

Go: Why do processes/Threads started using Win32API funcs seem to hijack and kill the parent proccess?

Now, the following code does what it's supposed to do, load calc.exe to memory and execute it, it does that fine. I've stitched together this code to ...

Why is the RDI register missing in this "Hello world" assembly program?

I found this "Hello" (shellcode) assembly program: And I found that mov rdi, 1 is missing. In other "hello world" programs that instruction appears ...

Removing null bytes for shellcode results in missing char and continuous loop

Update: I have fixed the argv array pointers not being valid causing the continuous loop and have updated the assembly code. Now the only issue is the ...