Windows bind shell universal shellcode

Written by  on September 26, 2015

.386 .model flat,stdcall .data .code start: assume fs:nothing ; ———————————————— ;[...]

Windows reverse shell universal shellcode

Written by  on August 29, 2015

Here it goes: 1) resolve needed functions from kernel 32 and push them on the stack 2) load & initialize winsock library 3) create a socket and connect[...]

WinExec calc.exe universal shellcode

Written by  on August 21, 2015

ASM: PUSH ESI ; LOCATE KERNEL32 BASE ADDR XOR EAX,EAX MOV EAX,DWORD PTR FS:[EAX+30] MOV EAX,DWORD PTR DS:[EAX+C] MOV ESI,DWORD PTR DS:[EAX+1C] LODS DWORD[...]

Avoiding badchars & small buffers with custom shellcode – OdinSecureFTPclient SEH exploit

Written by  on August 10, 2015

Hi there fellow pirates P-) ! This time we’ll be studying a vuln I just found on OdineSecureFTP client. Using the evil ftp server I fuzzed the aplication[...]

Attacking ftp clients with SEH exploits P-) filezilla 2.X case of study

Written by  on August 2, 2015

Hi there fellow pirates! Today we’ll be attacking filezilla client 2.2.X with a client side exploit. After doing a litle bit of research in oldapps.com[...]