Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
Home  Ask the Team  Mailing Lists  Advertising Info  Advisories  About SecuriTeam  Blogs Brought to you by: Suppliers of: Website Testing Tools Network Testing Tools Software Testing Tools SecuriTeam in Your Inbox New vulnerability? New tool? Tell us (Our PGP key). Confidence 2013 5% Off any SANS course Use Code: SecuriTeam_5 Hack In Paris La Nuit du Hack Subjects of Interest: Vulnerability Management SQL Injection Buffer Overflows Active Network Scanning Fuzzing Fuzzer Report Network Security Network Scanner Pen Testing Security Scanner	objdump2shellcode - Convert Objdump Into Shell Code 10 Apr. 2006     Credit: The information has been provided by Barros. To keep updated with the tool visit the project's homepage at: http://www.gotfault.net/research.php Free Website Security Scan Free Fuzzer Report Vulnerability Assessment Detect web app vulnerabilities University study comparing the top Accurate and automated scanning Get guidance from professionals. 6 commercially availble fuzzers. for networks of any size.    Details Protect your website! Free Trial, Nothing to install. No interruption of visitors. www.beyondsecurity.com/vulnerability-scanner objdump2shellcode is a python program to convert the output of objdump -d into a shellcode format. Code: # ------------------+----------------------------------------------------------- # ______________________________ __________ # __ ____/_ __ \__ __/__ __/_____ ____ ____ /_ /_ # _ / __ _ / / /_ / __ /_ _ __ / / / /_ /_ __/ # / /_/ / / /_/ /_ / _ __/ / /_/ // /_/ /_ / / /_ # \____/ \____/ /_/ /_/ \__,_/ \__,_/ /_/ \__/ # Security Community # # ----------------------------------------------------------------------------- # objdump2shellcode # ----------------------------------------------------------------------------- # Homepage : http://www.gotfault.net/research/tool/misc/objdump2shellcode.py # Author : Barros <barros [at] barrossecurity [dot] com # Version : 1.0 # ----------------------------------------------------------------------------- # This program converts the output of objdump -d into a shellcode format. # Ex: # # barros@gotfault:~$ objdump -d unpak | python objdump2shellcode.py # // <_start> # "\xeb\x1f" // jmp 8048095 <get_sc> # // <_start0> # "\x5b" // pop %ebx # "\x89\xd9" // mov %ebx,%ecx # // <_start1> # "\x31\xc0" // xor %eax,%eax # "\x8a\x43\x01" // mov 0x1(%ebx),%al # "\x3c\x5a" // cmp $0x5a,%al # "\x74\x18" // je 804809a <sc> # "\x2c\x41" // sub $0x41,%al # "\xc1\xe0\x04" // shl $0x4,%eax # "\x8a\x23" // mov (%ebx),%ah # "\x80\xec\x41" // sub $0x41,%ah # "\x08\xe0" // or %ah,%al # "\x88\x01" // mov %al,(%ecx) # "\x41" // inc %ecx # "\x43" // inc %ebx # "\x43" // inc %ebx # "\xeb\xe4" // jmp 8048079 <_start1> # // <get_sc> # "\xe8\xdc\xff\xff\xff" // call 8048076 <_start0> # barros@gotfault:~$ # # Gr33tz: Everybody in Gotfault, RFDSLabs and posidron (tripbit.net) # import sys import re try:  while True:   line = sys.stdin.readline()   if line:    # function name?    if re.match("^[^<]*<[^>]*>:.*$",line):     # print function name     print "".ljust(30),"//",re.findall("<[^>]*>",line)[0]      # opcodes + mnemonics line?    elif re.match("^[ ]*[0-9a-f]*:.*$",line):     line =line.split(":")[1].lstrip()       # split opcodes and mnemonics     om = line.split("\t")       # split opcodes     op = re.findall("[0-9a-f][0-9a-f]",om[0])       ops = "\""     for i in op:      ops += "\\x%s" % i     ops += "\""       # print opcodes and mnemonics     print ops.ljust(30),     if len(om) > 1: print "//",om[1].strip("\t\n")     else: print   else: break except: pass #EoF  Comments: blog comments powered by Disqus	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles 'Apache mod_rewrite Vulnerability PoC' 'netsniff-ng - A Linux Network Analyzer and Networking Toolkit' 'Simple Local File Inclusion Exploiter' 'NiX A Linux Brute Forcer' 'Nchop - A TCP Session Splicing Tool Used to Rvade Intrusion Detection Systems' 'Netifera - Modular Open Source Platform for Security Tools' 'WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems' 'Webshag - Web Server Audit Tool' 'Browser Fuzzer' 'FSpy - Linux Filesystem Activity Monitoring' 'telnetrecon - Telnet Recon' 'Zerowine Sandbox' 'JPEG Fuzzer' 'VNC Server Fuzzer' 'RSH Fuzzer' 'Exomind' 'Browser Rider' 'MP3 TAG Fuzzer' 'PDFuzzer - PDF File Standard Fuzzer' 'Miranda - UPNP Administration and Audit Tool'  Featured Articles 'MP3 TAG Fuzzer' 'ArpON - ARP Management System' 'PktAnon - Packet Trace Anonymization Tool' 'The Cookie Tools' 'SWFIntruder - Analyzing and Testing Security of Flash' 'SSHatter - SSH Password Brute Forcer' 'FireMaster - Firefox Master Password Recovery' 'BackTrack - a Linux Live Distribution Focused on Penetration Testing' 'MD5CRACK - MD5 Bruteforce Tool' 'Technika - Attack Scripting Environment' 'Windows Live Messenger v8 Password Finder' 'XSS Shell' 'ASP Auditor - Identify Vulnerable ASP.NET Servers' 'SWAAT Web Application Analysis' 'John The Ripper MPI Patch' 'loggy - Advanced Log Cleaner' 'GZIP_Encoding - Tools for Simple Manipulation of Gzip Encoding HTTP Transfers' 'objdump2shellcode - Convert Objdump Into Shell Code' 'r57-pid-check' 'ARP Tools - Collection of ARP Utilities'
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®