Questions tagged [shellcode]

In computer security, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode.

231 questions

-1

votes

1 answer

What does ((void (*) ())shellcode) () do, where shellcode is an unsigned char array?

#include unsigned char random[] = //randomness unsigned char shellcode[] = //shellcode in hex int main(void) { ((void (*) ())shellcode) (); } What does ((void (*) ())shellcode) (); do?

exploit shellcode

asked Jul 04 '17 at 02:16

Mark Read

-1

votes

1 answer

During a penetration test, when is it preferable to use reverse HTTP payload and when reverse TCP payload?

I'm using Veil Evasion and Metasploit.

penetration-test metasploit shellcode

asked Mar 18 '16 at 20:18

HenryC

-1

votes

1 answer

Understanding HTTP response from Linux Server

I am working through a question that involves someone using a vulnerability in a Linux server in order to gain access to it. The first part of the question states In monitoring the network activity between a critical Goldmine Tech web server and…

linux http injection vulnerability shellcode

asked Oct 07 '15 at 22:22

Josh

-2

votes

1 answer

What is the language below and where can I learn it?

As I am subscribed to the Exploit-DB Twitter feed, I see many exploits with code looking like this: \x3c\x68\x74\x6d\x6c\x3e\x0d\x0a\x3c\x6d\x65\x74\x61\x20\x68\x74\x74\x70\x2d\x65\x71\x75\x69\x76 I know this is used as a buffer overflow attack but,…

shellcode

asked Aug 17 '15 at 21:28

Lubbers

-2

votes

2 answers

Cannot get simple shellcode runner to work

I'm just trying to execute shellcode directly from the command line. I send a simple 0x90 NOP and get a segmentation fault? root@server:~# gcc shellcode.c -o shellrun -fno-stack-protector -z execstack root@server:~# ./shellrun `perl -e 'print…

linux shellcode gcc

asked Nov 30 '14 at 05:17

anonymous

-4

votes

1 answer

Why is my reverse_https payload running at 0.0.0.0:443?

I created a reverse_https backdoor ( windows/meterpreter/reverse_https ) with msfpayload. Now I want to create a reverse shell from my target with a multi handler. The problem is that when I exploited the handler I see that it ran at 0.0.0.0:443 !…

metasploit shellcode

asked May 10 '15 at 11:06

unbl0ck3r

Prev 1 2 3

…