There is also a web interface
to the msfpayload and msfencode tools. We will leave that for other chapters.
References
Noir use of FNSTENV www.securityfocus.com/archive/82/327100/30/0/threaded
JMP/CALL and FNSTENV decoders www.klake.org/~jt/encoder/#decoders
Good brief on shellcode and encoders www.secdev.org/conf/shellcodes_syscan04.pdf
Metasploit www.metasploit.com/confs/recon2005/recent_shellcode_developmentsrecon05.
pdf
Chapter 10: Writing Linux Shellcode
241
PART III
This page intentionally left blank
243
CHAPTER11 Basic Windows Exploits
In this chapter,we will show how to build basic Windows exploits.
??? Compiling Windows programs
??? Linking with debugging information
??? Debugging Windows programs with Windows console debuggers
??? Using symbols
??? Disassembling Windows programs
??? Debugging Windows programs with OllyDbg
??? Building your first Windows exploit of meet.exe
??? Real-world Windows exploit example
Up to this point in the book, we??™ve been using Linux as our platform of choice because
it??™s easy for most people interested in hacking to get hold of a Linux machine for experimentation.
Many of the interesting bugs you??™ll want to exploit, however, are on the
more-often-used Windows platform.
Pages:
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452