Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Windows NT shellcode needed

from [Aleksander P. Czarnowski] Network Security [Permanent Link]
Subject: RE: Windows NT shellcode needed
Date: Sat, 23 Jul 2005 00:23:12 +0200 
You can check the classic publication:
Exploiting Windows NT 4.0 Buffer Overruns (A Case Study: RASMAN.EXE)
http://www.ngssoftware.com/papers/ntbufferoverflow.html

A lot of good tips on this topic can be also found in Shellcoder's handbook if 
you need introduction to more advance topics on this platform. Also take a look 
at kungfoo project and MetaSploit for universal shellcodes. 

Remember that you don't call Win32 API with syscall (int 80h) like in Linux but 
you need to have correct address to issue call instruction.
Just my 2 cents
Best Regards,
Aleksander Czarnowski
AVET INS
 


-----Original Message-----
From: Mike Klingler [mailto:mike@securitymetrics.com]
Sent: Friday, July 22, 2005 5:02 AM
To: pen-test@securityfocus.com
Subject: Windows NT shellcode needed


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

I have found a more remote version of apache 1.3.4 win32 on a NT system.
 It appears vulnerable, but I am having the hardest time locating shell
code for use against this system.

What are some good resources for creating shell code on windows NT 4.0
systems?  I have done trivial buffer overflows in C on Linux, but don't
know how to make the jump to windows very well.  Any thoughts out there?
 Thanks.

Mike
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFC4GHAQzWqtbsEFfgRA+tOAJ9Ky3YSM1DlrffeLkaiYg71S6HQtACgtZ/X
bCa1mYwOa8wNT91l1x45KzM=
=DAnz
-----END PGP SIGNATURE-----
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Pen-Testing via TOR, Jerome Athias
Next by Date:  Re: Windows NT shellcode needed, mike king
Previous by Thread:  Windows NT shellcode needed, Mike Klingler
Next by Thread:  Re: Windows NT shellcode needed, matt
Indexes:  [Date] [Thread] [Top] [All Lists]