galda
January 24th, 2010, 17:42
Any idea how can I solve it? I've found a stack overflow, overwrite the EIP and jumped to the ESP containing my injected info, but there are only 20 bytes for it...any idea how can I inject a shellcode?
View Full Version : Not enough space for the shellcode
Indy
January 24th, 2010, 18:15
shared memory.
Aimless
January 24th, 2010, 18:38
... or, anonymous pipes.
An article here. By what a few considered to be by the "RED" one, albeit with a different nick....
-------[ Phrack Magazine --- Vol. 9 | Issue 55 --- 09.09.99 --- 15 of 19 ]
Have Phun
An article here. By what a few considered to be by the "RED" one, albeit with a different nick....
-------[ Phrack Magazine --- Vol. 9 | Issue 55 --- 09.09.99 --- 15 of 19 ]
Have Phun
galda
January 24th, 2010, 19:56
tnx guys!
I found that some of the data could be in EDX, how can i jump to EDX address? lets say the address or EDX is 0x0065ed12 from a nopsled?
like how can I write in opcode JMP EDX?
I found that some of the data could be in EDX, how can i jump to EDX address? lets say the address or EDX is 0x0065ed12 from a nopsled?
like how can I write in opcode JMP EDX?
Aimless
January 24th, 2010, 23:47
You mean, you want to write a shell code without knowing how to convert instructions into binary? Does not seem like you have found a stack overflow -- more like you are following a tutorial....
You need to get proficient with patching first. Then you could think of moving up the chain....
Obviously, I presume you also did not really bother to read the link I gave you... otherwise you would not have been asking this.
Have Phun
You need to get proficient with patching first. Then you could think of moving up the chain....
Obviously, I presume you also did not really bother to read the link I gave you... otherwise you would not have been asking this.
Have Phun
Kayaker
January 25th, 2010, 02:02
Quote:
| [Originally Posted by Aimless;84908]An article here. By what a few considered to be by the "RED" one, albeit with a different nick.... |
Really? That's a new twist. Not sure I see a stylistic match or anything...
Aimless
January 25th, 2010, 03:08
"Au Contraire" my dear JMI.
The emotion matches even if the styles do not (though, I think it does to some extent)...
Note the:
1. Quotes (as usual)
2. Free world, etc. etc (as ususal)
3. Smooth flow of tutorial (as usual)
Though I admit, I am also a bit skeptical about the same... and yet, so many stalkers (older ones) have been "discussing" that possibility... of course, a big difference being "discussing" and actually "knowing"...
Guess we'll never know. Hence the term in my sentence "a few consider..." rather than simply say "By so-and-so"
Ah... the gone by days... *sigh*
Have Phun
The emotion matches even if the styles do not (though, I think it does to some extent)...
Note the:
1. Quotes (as usual)
2. Free world, etc. etc (as ususal)
3. Smooth flow of tutorial (as usual)
Though I admit, I am also a bit skeptical about the same... and yet, so many stalkers (older ones) have been "discussing" that possibility... of course, a big difference being "discussing" and actually "knowing"...
Guess we'll never know. Hence the term in my sentence "a few consider..." rather than simply say "By so-and-so"
Ah... the gone by days... *sigh*
Have Phun
Kayaker
January 25th, 2010, 03:13
Quote:
| "Au Contraire" my dear JMI. |
Nope, I don't see a stylistic match there either
OK, I'll give you the RED one..
..Kayaker..
JMI
January 25th, 2010, 07:04
Apparently Aimless "assumed" I had written the post using the "nome de plume" of Kayaker! 
In which case he's "Aim" would have been "less" than accurate!
Regards,
In which case he's "Aim" would have been "less" than accurate!
Regards,
Aimless
January 25th, 2010, 08:30
Nope guys...
Just showing off my French... (after translating it from Google translate... heh!) and...
OH! *NOW* I see.... it should have been K, not J.... my bad.
Have Phun
Just showing off my French... (after translating it from Google translate... heh!) and...
OH! *NOW* I see.... it should have been K, not J.... my bad.
Have Phun
Zodiac
February 1st, 2010, 15:08
Interesting to see there is still an interest in the "RED" one. Luv it.
Powered by vBulletin® Version 4.2.2 Copyright © 2018 vBulletin Solutions, Inc. All rights reserved.