connect-back win32 shellcode

From: wirepair (wirepair@roguemail.net)
Date: 04/09/03

  • Next message: Colin Greg: "Firewall Testing Software" 
    From: "wirepair" <wirepair@roguemail.net>
To: pen-test@securityfocus.com
Date: Wed, 09 Apr 2003 10:10:56 -0700

    lo all,
    So I've decided to take the dive into writing windows
    based (memory) exploits *shudders*, I'm having some
    serious complications regarding shellcode and well, how to
    go about writing it. Is there some solid documentation on
    the function of LoadLibraryA/GetProcAddress
    handlers/functions? Also if anyone has a good disassembly
    of any of the connected back shellcodes (Dark
    Spyrit:null.printer/David Litchfield's:sql hello) I would
    appreciate getting my hands on them. Most of the NT
    Overflow papers I see are based on old versions of windows
    (nt4) or the examples are completely outdated. It seems
    that most of these papers do not give a good explanation
    of the importance of the LoadLibraryA/GetProcAddress
    calls. Maybe I am missing something, probably am... This
    is not as easy as unix land and for someone who codes only
    in *nix environments, I'm finding Windows API's well,
    terrifying.
      Thanks for any information,
    -wire
    _____________________________
    For the best comics, toys, movies, and more,
    please visit <http://www.tfaw.com/?qt=wmf>

    --------------------------------------------------------------
    Costs are climbing and complaints are rising
    as SPAM overloads your e-mail servers and Inboxes
    SurfControl E-mail Filter puts the brakes on spam & viruses
    and gives you the reports to prove it.
    http://www.securityfocus.com/SurfControl-pen-test2
    Download a free trial and see just
    what's going in and out of your organization.
    --------------------------------------------------------------

  • Next message: Colin Greg: "Firewall Testing Software"

    Relevant Pages

    • connect-back win32 shellcode
      ... So I've decided to take the dive into writing windows ... serious complications regarding shellcode and well, ... Overflow papers I see are based on old versions of windows ...
      (Vuln-Dev)
    • [Full-Disclosure] Shatter XP
      ... introduces several new messages for the windows button control: ... - inject shellcode to known location ... void doWrite; ... printf("+ Couldn't Find %s Window\n",tWindow); ...
      (Full-Disclosure)
    • Re: Windows Shellcode Writing
      ... > shellcode for Windows? ... > documents on it for linux or unix based os's but nothing like it for ...
      (Vuln-Dev)
    • [Full-Disclosure] Re: Internet Explorer >=5.0 : Buffer overflow
      ... I can confirm it under Windows 2000 with IE 5.50.4807.2300 ... Full control over the EIP, but the shellcode cannot contain (as it currently ...
      (Securiteam)
    • Re: Are _T() and TEXT() macros equivalent?
      ... Why would they not want C++ to be best for creating Windows applications? ... But they've shown no interest in doing that, and in fact are touting their future releases as being even more standard compliant. ... As someone who's devoted my career to writing Windows apps in C++, this is not to my liking at all. ...
      (microsoft.public.vc.mfc)