Project Shellcode

Project Shellcode now allows you to share your shellcode with the rest of the Project Shellcode community!

You can also get feedback from more experienced shellcoders, and access shellcode that you wouldn't have had access to before!

The Shellcode Upload section supports uploading txt, c, asm, and rb files.

So visit the Shellcode Upload section now and start sharing your shellcode!

Ty

Introduction

Metasploit is an open source exploit framework that provides you with heaps of exploits, as well as tools to assist you in creating your own exploits. This includes the ability to generate a large range of shellcodes for different purposes and platforms that can be customised to attack your target.

This tutorial is an introduction into using the Metasploit Framework to generate shellcode.

Our Aim

Introduction

Introduction

This tutorial provides an introduction into network shellcode. The shellcode shows how to load libraries dynamically, and find functions within those libraries. It then proceeds to implement the "Port Bind" shellcode where a listening socket is setup to connect remote attackers to a local command prompt.

A lot of the code was pulled and learned from the following awesome paper with some slight modifications.

Introduction

Up until now we have created shellcode containing hardcoded Windows function addresses. Hardcoding memory addresses restricts the shellcode to running on a specific version of Windows, service pack, and potentially even patch level. Well that stops here!

Introduction

In the previous tutorials we have always had hardcoded addresses pointing to Windows functions that we wanted to call. This prevents the shellcode from being executable on multiple Windows operating systems, service packs, or even differing patch levels.

This tutorial is the first step in moving towards a more dynamic Windows shellcode structure that will be executable on multiple Windows operating system versions, service packs, and patch levels.

Introduction

This tutorial is simply an extension of the first tutorial; however, instead of creating shellcode that simply sleeps for five seconds, it calls the WinExec function to create a new administrative user on the victim system. This tutorial also teaches you how to define and locate string constants. In this case the command string that you want to execute. We will also exit the process cleanly so that a core dump is not created.

Introduction

This tutorial teaches you some handy tricks when creating shellcode, such as how to load libraries, dynamically locate Windows functions, define and locate string constants, and call Windows functions. This sets you up to start creating your own shellcode.

Some of this tutorial was based on information pulled from http://www.vividmachines.com/shellcode/shellcode.html.

Our aim

Introduction

This tutorial teaches you the basics of shellcoding, including finding function addresses in Windows DLLs, simple assembly, how to compile ASM code, and how to execute your shellcode to see if it works. We will be creating the most simple shellcode that simply sleeps for five seconds and then exists.

Some of this tutorial was based on information pulled from http://www.vividmachines.com/shellcode/shellcode.html.

Introduction

The assembly tutorials contained within this site are aimed towards creating assembly code in the aim to get you ready to create your own assembly and shellcode - which would hopefully be included with the "Project Shellcode Development Framework".

What are the differences between windows shellcode and Linux shellcode?
(http://www.vividmachines.com/shellcode/shellcode.html)