b40fc5afa8
chore: update author information in poolparty shellcode 32-bit
2026-01-08 12:20:43 +01:00
c5fd212334
docs: add poolparty 32-bit, update poolparty 64-bit stubs
2026-01-08 05:15:28 -05:00
4774c03888
docs: removing unused sources
2026-01-08 04:46:05 -05:00
98f0183805
fix(sources): fixed poolparty stub to graceful exit after callback
2024-09-25 08:10:53 -04:00
3a4b5eb372
feat(sources): including shellcodes used during pool-party injection
2024-09-25 05:14:58 -04:00
e8ce6cf2f3
Fix up some comments in the x64 block_api source code
2020-07-09 14:02:12 -04:00
1537d3f193
Update the block_api assembly source files
...
This changes the x86 version to the (10 bytes) larger variant that can
handle full 32-bit jumps which is necesary for maximum compatibility
within the framwork.
Additionally, numeric literals are expressed in hex for compatibility
with the keystone assembler allowing these files to be compatitble with
external tools.
2020-07-08 15:28:41 -04:00
d50058cbc6
update to python standards
2019-12-19 09:22:48 -06:00
e8bbf2f117
fix remaining python3 compat bugs
2019-12-19 09:21:24 -06:00
0a846aaeb6
convert to standard python format
2019-12-19 08:59:36 -06:00
3cc6b8f8fd
update to standard python formatting
2019-12-19 08:58:40 -06:00
d64f53e462
don't hide exception data
2019-12-19 08:56:23 -06:00
ce69efcfa2
python3 fixes, don't hide exception data
2019-12-19 08:56:00 -06:00
3a1a576747
remove nasm ignored keyword
2019-12-19 08:44:13 -06:00
25ce890d36
fix remaining python3 compat issues, add #!
2019-12-19 08:44:02 -06:00
e804745766
Bugfix: correct reference to asm file
2019-11-12 09:30:27 -08:00
311b03af93
Action remainder of code review changes.
...
- Revert files that will only run as python2.
- Remove superfluous calls to list()
- Other minor cleanup
2019-11-01 19:24:22 -07:00
8563a29003
Convert all python code to python3. Fixes #12506 .
2019-10-31 14:16:14 -07:00
f17b28930d
Update executex64.asm
2017-06-04 13:18:50 +03:00
bdf121e1c0
x86 kernels will safely ret instead of BSOD
2017-05-17 23:48:14 -06:00
4f3a98d434
add arch detection to shellcode
2017-05-17 23:36:17 -06:00
a5c391dae2
multi-arch ring0->ring3 shellcode .asm file (work in progress)
2017-05-17 23:29:05 -06:00
4eaf1ace81
Bugfix loading address of library path into rcx
...
The old code breaks if the payload is executed from a memory area where the 4 most significant bytes are non-zero.
2015-11-02 16:56:07 +01:00
9444c8c410
Fix #5988 , windows x64 stagers
...
* Also, use mov esi, esi to save an extra byte
* Also, modify the block_recv.asm code, just to have it up to date
2015-09-28 15:52:50 -05:00
dab4333867
updated asm in block
2015-03-18 16:07:46 -04:00
b604599c8e
Fix comments
2015-03-11 21:32:35 -05:00
479a9cc1a9
Fix missing stack variables & remove old comment
2015-03-11 21:23:27 -05:00
7e3b4017f0
Rename and resynced with master, ready for refactoring
2015-03-11 14:36:27 -05:00
991e72a4fa
HTTP stager based on WinHttp
2015-03-10 13:40:16 -05:00
5297ebc1a1
Merge branch 'master' into land-1396-http_proxy_pstore
...
Bring things back to the future
2015-02-20 08:50:17 -06:00
9791acd0bf
Add stager ipknock shellcode (PR 2)
2014-12-27 22:03:45 +01:00
e34c37042a
Readd block_hidden_bind_tcp.asm
...
Because stager_hidden_bind_tcp.asm includes it.
2014-12-22 11:13:07 -06:00
c0fa8c0e3f
Add stager for hidden bind shell payload
2014-12-22 17:21:11 +01:00
e8728943ec
Shave off two more bytes for HTTP(s) stagers
2014-12-13 11:49:30 -06:00
69c938f65a
More shellcode golf
2014-12-13 11:49:15 -06:00
25ed68af6e
Land #3017 , Windows x86 Shell Hidden Bind
...
A bind shellcode that responds as 'closed' unless the client matches the
AHOST ip.
2014-06-08 13:49:49 +01:00
bb4e9e2d4d
correct error in block service_change_description
2014-05-13 16:04:39 +02:00
6332957bd2
Try to add SERVICE_DESCRIPTION options to psexec, but it doesn't seem to work...
2014-05-13 16:04:39 +02:00
bdbb70ab71
up block_service_stopped.asm
2014-05-13 16:04:39 +02:00
e269c1e4f1
Improve service_block with service_stopped block to cleanly terminate service
2014-05-13 16:04:38 +02:00
c43e3cf581
Improve block_create_remote_process to point on shellcode everytime
2014-05-13 16:04:38 +02:00
25d48b7300
Add create_remote_process block, now used in exe_service generation
2014-05-13 16:04:38 +02:00
0bdf7904ff
Change author of single_service_stuff.asm
2014-05-13 16:04:38 +02:00
513f3de0f8
new service exe creation refreshed
2014-05-13 16:04:36 +02:00
520d1e69c4
Rapid7 Comma Inc
...
After some more discussion with Rapid7's legal fellow.
2014-03-13 09:46:20 -05:00
9d4ceaa3a0
Let's try to be consistent about Rapid7 Inc.
...
According to
http://www.sec.gov/Archives/edgar/data/1560327/000156032712000001/0001560327-12-000001.txt
Rapid7 is actually "Rapid7 Inc" not "Rapid7, LLC" any more.
This does not address the few copyright/license statements around
"Metasploit LLC," whatever that is.
2014-03-12 11:20:17 -05:00
1fda6b86a1
Changed cmp eax by inc eax. Saved one byte
2014-03-10 12:13:10 +01:00
99cd36c036
Fix description of Input
2014-03-06 03:16:55 +01:00
689523a26f
Clean Code based on jlee-r7's comments
...
- Put allocations in loop
- Decomment exitfunc
- Aligned comments
- Some more code cleaning
2014-03-06 02:44:24 +01:00
83929facc4
Fix bug on Windows XP
...
Correct the addresses of functions in pstorec.dll.
Successfully tested on Server 2003 and XP.
2014-03-06 02:35:44 +01:00
Diego Ledda