发表新帖
发表新帖

running shellcode + vs2010

前端 未结
关注
4 1180
春和景丽
春和景丽 2020-12-21 20:34

I just tried the following code snippet for shellcode testing purposes:-

#include

using namespace std;

char sc[] = \"\"; #i\'ve removed the
相关标签:
4条回答
  • 离开以前
    2020-12-21 20:47

    To execute a shellcode in your C/C++ program with VS, the simplest way is embedding an Assembly code like this example below:

    char* buffer="blah blah blah";
int main() {
    __asm{
        lea eax, buffer
        call    eax
    }
}

    Hope this help!

    0 讨论(0)
  • Happy的楠姐
    2020-12-21 20:50

    [
    At the time I am answering the question is about why compilation fails for …

    #include<iostream>

using namespace std;

char sc[] = ""; #i've removed the shellcode
int main() {
    int (*func)();
    func = (int(*)())sc;
    (int)(*func)();
}

    This code is an attempt to execute data bytes as machine code. However, the OP calls this a “code snippet for shellcode testing purposes”, which is unrelated. And so I am including this original context.
    ]

    You may have success using a void* as intermediary.

    In the formal even that should not compile, because in the formal a data pointer cannot be converted to a function pointer or vice versa.

    However, reportedly Posix requires the ability to do that conversion, and it's old existing practice, so I believe most if not all compilers support it.

    Note that you are in UB-land as regarding effects.

    Also, note that anti-virus software and page level execute permission checking may disagree a bit with trying to execute the bytes in a string as machine code, so at that higher level yes you're doing something obviously wrong. ;-)

    By the way, if what you are trying to achieve is to execute a shell script, then look into the system function.

    What command to pass in the system call would depend on your system, so if you change your question be sure to include information about that.

    Cheers & hth.,

    0 讨论(0)
  • 南旧
    2020-12-21 21:01

    You cannot cast an array to a function pointer. You have to first acquire a pointer to the array, which then can be cast:

    func = (int(*)())&sc;
    0 讨论(0)
  • 心在旅途
    2020-12-21 21:05

    I think the following should work:

    char sc[] = ""; // i've removed the shellcode

int main()
{
    int (*func)() = (int(*)())sc;   // C++
    int (*func)() = sc;             /* C  */
    func();
}

    It's technically undefined behaviour, but then again that's the whole point of shellcode.

    0 讨论(0)
 看不清?
提交回复
热议问题