+- Sinisterly (https://sinister.ly)
+-- Forum: Coding (https://sinister.ly/Forum-Coding)
+--- Forum: Assembly (https://sinister.ly/Forum-Assembly)
+--- Thread: I am making a shell script for vulnserver.exe (/Thread-I-am-making-a-shell-script-for-vulnserver-exe)
I am making a shell script for vulnserver.exe - Num5kull - 01-23-2017
I have the overflow and the offset.
Now i have to make a shell script using assembly
this does anyone have any good sources for this sort of information?
i have some decompiled exe's (processor dependant) that i am supposed to patch together make the script.
Am following linux tuits using cygwin environment , so the assembly examples i am looking at do not matchup at all well.
will check back in a day or 2 with the code i have so far.
RE: I am making a shell script for vulnserver.exe - Num5kull - 01-30-2017
Got side tracked again still no further
i can tell you interested though anon's
Incase you where wonderin i used spike , taof and peach fuzzer to find the overflow
All on the same command
I used a modified ftpserver xml for attacks with peach.
You get loads of varied results with peach, but spike was a good starting point for this.
I used the spike code in the end for my script
so whenni had a hit i copy and pasted the overflow via netcat and read with ollydb
I found the offset by adding paterns of chars from the tail end backwards until 41 was replaced with something else. More to come much later.
RE: I am making a shell script for vulnserver.exe - PhargedPhreak - 02-27-2017
Exploit-db has some examples of source.