Search
You can find the results of your search below.
Fulltext results:
- Obfuscation: polymorphic in-memory decoder
- ecoder starts with this instruction: <code asm> _start: jmp short call_decoder ; Begin of JMP-C... goal here: <code asm [enable_line_numbers="true",start_line_numbers_at="26"]> xor rax, rax mov al, 60h m... change to: <code asm [enable_line_numbers="true",start_line_numbers_at="26"]> xor rax, rax mov rax, gs:[... e 0 bytes. <code asm [enable_line_numbers="true",start_line_numbers_at="30"]> mov rax, [rax] ; 48 8b
- FatCat Attack PoC
- e ===== - Deactivate AV - Create payload - Start handler - BadUSB attack - Use RemoteShell to ... d attack ===== ==== Metasploit payload ==== * Start Metasploit * Open cmd <code dos>cmd</code> ... e payload}}] \\ ==== Metasploit Handler ==== * Start Multi Handler Server <code ruby> use exploit/mul... ecurity:blog:001-fc-handler.png?400|Configure and start Metasploit Handler}}] \\ ==== Access to the targe
- Buffer overflow in the 64-bit stack - Part 2
- d 2 gadgets to create the exploit. To do this, we start ropper and display the gadgets <code bash> roppe... xploit. So we load our file into the debugger and start it: <code bash> gdb-peda$ start ... gdb-peda$ p system $1 = {int (const char *)} 0x7ffff7e17920 <__libc... -part2 </code> \\ \\ ==== root Shell ==== Now we start our programme and pass our buffer as an argument.
- Buffer overflow in the 64-bit stack - Part 3
- Debug ===== {{page>en:vorlagen:attention}} ==== Start socat Listener ==== The supplied socat has mecha... process 105836 Mapped address spaces: Start Addr End Addr Size Offset Pe... urther pwntools optimisations and automated socat start can be found in the [[gh>psycore8/nosoc-bof/tree/... .com/a/48571747)) \\ \\ ==== root shell ==== We start socat and bof-part3 as root <code bash> su root
- Privilege escalation: Windows admin thanks to Linux
- the boot sequence to the appropriate medium Now start Lubuntu and configure the following: * Change ... > \\ \\ ===== Manipulation of the SAM ===== ==== Start chntpw ==== Now it's time to start the tool we just installed. <code bash> sudo chntpw -i SAM </code> ... shut down. \\ \\ ===== Restart computer ===== To start the computer now, the following things must be se
- Obfuscation: ByteSwapping
- itialisation and JMP-CALL-POP === <code stylus> _start: xor rax, rax xor rbx, rbx xor rcx, r... hon shencode.py extract -i poly2.o -o poly2.raw --start-offset 100 --end-offset 404 </code> * Then we ... Debug ===== After compiling the injector, we can start debugging. I use x64dbg for this. {{it-security:
- Shellcode Injection Part 1
- ger}}] \\ \\ ==== Prepare Metasploit ==== Now we start a handler in Metasploit that accepts the reverse ... </code> \\ \\ ==== Execute shellcode ==== We now start ''Inject.exe''and look at the output in Metasploi... in our project and set the macro instructions to start and end the code obfuscation. <code c++ [enable_
- Shellcode Injection Part 3
- ecutes a downloaded VBS file. However, we want to start a Python script that creates a Meterpreter shell.... everything is ready. \\ \\ ==== Attack ==== Now start the programme on the target PC. {{it-security:bl... for this is also available in the repository. To start, the target PID must be passed as an argument: <
- Buffer overflow in the 64-bit stack - part 1
- first we have to find out how we can do this. We start our programme in the debugger and generate a 200-... rst we set root rights to the vulnerable file and start it((https://blog.techorganic.com/2015/04/10/64-bi
- Obfuscation: Disguise shellcode as UUIDs
- tionality ===== ==== Metasploit handler ==== We start a Metasploit handler on the attack system to rece
- Shellcode Injection Part 2
- ateRemoteThread(processHandle, NULL, 0, (LPTHREAD_START_ROUTINE)remoteBuffer, NULL, 0, NULL); </code> \\
- Shellcode Injection Part 4
- . The following requirements should be met: * Start of ''calc.exe'' on a Windows computer * 64-bit