GitHub

This repository contains basic assembly shellcode examples for both linux and windows on x64 arch.

The linux example shows how to make a simple execve() syscall on /bin/sh executable. nasm -f elf64 linux_x64/spawnshell.asm -o spawnshell.o python3 parsers/shellcode_from_asm_object.py -i ...
GitHub

lls115/elf_to_shellcode

The python library parses the elf and create a simple relocatable file format Then the mini loader is inserted as the entry point of the elf the mini loader will load the relocatable format and ...
IEEE

Offensive Shellcode from Scratch: Get to grips with shellcode countermeasures and discover how to bypass them

Shellcoding is a technique that is executed by many red teams and used in penetration testing and real-world attacks. Books on shellcode can be complex, and writing shellcode is perceived as a kind of ...
Microsoft

Shellcode Analysis via MSEC Debugger Extensions

In a previous post we provided some background on the !exploitable Crash Analyzer which was released earlier this year. One of the things that we didn’t mention is that !exploitable is just one of the ...
Security Boulevard

Analyzing an Instance of Meterpreter’s Shellcode

In my previous post on detecting and investigating Meterpreter’s Migrate functionality, I went down a rabbit hole on the initial PowerShell attack spawned by and Excel macro. In that payload was a bit ...