-
Notifications
You must be signed in to change notification settings - Fork 2
Files
/
Copy pathExtendend_Shellcode_IA32.tsv
Latest commit
5901 lines (5901 loc) · 390 KB
/
Extendend_Shellcode_IA32.tsv
1 | SNIPPETS | INTENTS |
|---|---|---|
2 | _appendfile: | declare appendfile_label |
3 | _appendfile: | define the _appendfile label |
4 | _build: | declare _build label |
5 | _build: | define the _build label |
6 | _child: | define the _child label |
7 | _close: | declare _close label |
8 | _close: | define the _close label |
9 | _cmd: | define _cmd label |
10 | _cmd: | declare _cmd register |
11 | _cmd: | define the _cmd label |
12 | _continue: | define the _continue label |
13 | _decoder: | define _decoder_label |
14 | _dup2_loop: | define _dup2_loop label |
15 | _dup2_loop: | define the _dup2_loop label |
16 | _egg: | define the _egg label |
17 | _exec: | declare _exec _label |
18 | _exec: | define _exec label |
19 | _exec: | declare _exec label |
20 | _exec: | define the _exec label |
21 | _execline: | define _execline label |
22 | _execline: | define the _execline label |
23 | _exit: | define _exit label |
24 | _exit: | define the _exit label |
25 | _file: | _declare _file label |
26 | _file: | define _file_label |
27 | _file: | define the _file label |
28 | _ip equ 0x0100007f | define ip address as _ip = 0x0100007f |
29 | _ip equ 0x0100007f | define ip equal to 0x0100007f |
30 | _isegg: | define the _isegg label |
31 | _load_data: | define _load_data label |
32 | _load_data: | define the _load_data label |
33 | _next: | define the _next label |
34 | _param: | declare _param label |
35 | _param: | define the _param label |
36 | _params: | define _params label |
37 | _params: | define the _params label |
38 | _parent_read: | define the _parent_read label |
39 | _parent: | define the _parent label |
40 | _random: | define _random label |
41 | _random: | define the _random label |
42 | _read: | define _read label |
43 | _return: | define the _return label |
44 | _setsockopt: | define the _setsockopt label |
45 | _shell: | define the _shell label |
46 | _socket: | define the _socket label |
47 | _start: | declare _start label |
48 | _start: | _start function |
49 | _start: | _start label |
50 | _start: | _start |
51 | _start: | define the _start label |
52 | _start: \n jmp call_decoder | define the _start label and jump short to the call_decoder |
53 | _start: \n jmp call_decoder | define the _start label and jump to the call_decoder |
54 | _start: \n jmp call_decoder | define the _start label and jump to call_decoder |
55 | _start: \n jmp short call_decoder | define the _start label and jump short to the call_decoder |
56 | _start: \n jmp short call_decoder | define the _start label and jump short to call_decoder |
57 | _start: \n jmp short call_shellcode | define the _start label and jump short to the call_shellcode |
58 | _start: \n jmp short call_shellcode | define the _start label and jump short to call_shellcode |
59 | _start: \n jmp short call_shellcode | define the _start label and jump short to call_shellcode label |
60 | _start: \n jmp short enc | define the _start label and jump short to enc |
61 | _start: \n jmp short stage | define the _start label and jump short to stage |
62 | _user: | declare _user label |
63 | _user: | define the _user label |
64 | _while_loop: | define the _while_loop label |
65 | _write: | declare _write label |
66 | _write: | define _write label |
67 | _write: | define the _write label |
68 | 1: | define the numeric label 1 |
69 | 1: | define the label 1 |
70 | 2: | define the label 2 |
71 | 2: | define the numeric label 2 |
72 | 3: | define the label 3 |
73 | 3: | define the numeric label 3 |
74 | a_letter db 'd' | allocate one byte of memory for a_letter variable and initialize it to 'd' |
75 | aas | correct the result od the previous unpacked decimal substraction in al register |
76 | adc eax, 0x9c09ebea | sum hexadecimal value 0x9c09ebea with eax register. if cf is set, add 1 to eax. |
77 | add [ebp-4], esi | add esi into memory address ebp-4 |
78 | add ah, bh | add the contents of the bh register into the ah register |
79 | add al, 0x2 | add 0x2 to al |
80 | add al, 0x25 | add 0x25 to the al register |
81 | add al, 0x3 | add 0x3 to the contents in al and save the result in al |
82 | add al, 0x33 | add 0x33 to the contents in al and save the result in al |
83 | add al, 0x40 | add 0x40 to the al register |
84 | add al, 0x66 | add 0x66 to the contents in al and save the result in al |
85 | add al, 0xa | add 0xa to the al register |
86 | add al, 0xb | add 0xb to the al register |
87 | add al, 2 | add 2 to al register |
88 | add al, 2 | add the value 2 to the contents of the al register |
89 | add al, 3 | add 3 to al register |
90 | add al, 3 | add 3 to al |
91 | add al, byte '0' | add byte '0' to al |
92 | add al, byte [edi] | add the byte in edi to the al register |
93 | add al,0x2 | add hexadecimal value 0x2 to al register |
94 | add al,0x3 | add the value 0x3 into al register |
95 | add al,0x33 | add the hexadecimal value 0x33 to al register |
96 | add al,0x3b | add hexadecimal value 0x3b to al register |
97 | add al,0x66 | add the hexadecimal value 0x66 to al register |
98 | add ax, [di + 20] | add memory[di + 20] to ax |
99 | add ax, 01 | add 01 to ax |
100 | add ax, bx | add the contents of bx into ax |
101 | add bl, 0x2 | load jexadecimal value 0x2 into bl register |
102 | add bl, 0x2 | add 2 to bl content |
103 | add bl, 0x2 | add 0x2 to the contents in bl and save the result in bl |
104 | add bx, ax | add ax to bx |
105 | add byte [edi], 0x4 \n not byte [edi] | add 0x4 from the byte at the address edi and negate the result |
106 | add byte [edi], 7 \n not byte [edi] | add the byte at the address edi after subtracting the value 7 |
107 | add byte [edi], 8 \n not byte [edi] | add the value 8 from the byte in edi and negate it |
108 | add byte [esi], 0x02 | add 0x02 to the current byte in esi |
109 | add byte [esi], 0x1 \n not byte [esi] | add 0x1 from the current byte of the shellcode and negate the result |
110 | add byte [esi], 0x1 \n not byte [esi] | add 0x1 from the byte at the address esi and negate the result |
111 | add byte [esi], 0x10 | add 0x10 to the current byte in esi |
112 | add byte [esi], 0x9 \n not byte [esi] | add the value 0x9 from the current byte of the shellcode and then negate the result |
113 | add byte [esi], 2 | adds 2 to the first character pointed from esi |
114 | add byte [esi], 2 | add the byte value 2 to the esi register |
115 | add byte [esi], 2 \n not byte [esi] | negate the byte at the address esi after adding the value 2 |
116 | add byte [esi], 3 \n not byte [esi] | add the value 3 from the byte in esi and negate it |
117 | add byte [var], 10 | add 10 to the single byte stored at memory address var |
118 | add byte [var], 20 | add 20 to the single byte stored at memory address var |
119 | add byte [var], 30 | add 30 to the single byte stored at memory address var |
120 | add byte_value, 65 | add an immediate operand 65 to byte_value |
121 | add byte_value, dl | add the register dl in the memory location byte_value |
122 | add cl, 0x2 | add 2 to counter |
123 | add cl, 0x2 | add 2 to counter cl |
124 | add cl, 0x2 | add 0x2 to the contents in cl and save the result in cl |
125 | add cl, 0xb8 | add 0xb8 to the cl register |
126 | add dx, 0x1b | add the value 0x1b into the dx register |
127 | add dx, 0x2f2f | add 0x2f2f to the contents in dx and save the result in dx |
128 | add dx,0x1b | add 27 to dx contents |
129 | add dx,0x2f2f | then add to it the hexadecimal value 0x2f2f. |
130 | add eax, [ebp-4] | add the contents of the local variable stored at ebp-4 into eax |
131 | add eax, 0x10 | add 0x10 to eax |
132 | add eax, 0x12345678 | add 0x12345678 to the contents in eax and save the result in eax |
133 | add eax, 0x2d383638 | add 0x2d383638 to the contents in eax and save the result in eax |
134 | add eax, 0x2d383638 \n push eax | push ÔhmodÕ on stack |
135 | add eax, 0x31179798 | add 0x31179798 to the contents in eax and save the result in eax |
136 | add eax, 0x5 \n jnz L2 | add 0x5 to edx and jump to L2 if the result is not 0 |
137 | add eax, 0x7 \n jnz L4 | add the value 0x7 to eax and jump to the label L4 if the sum is not zero |
138 | add eax, 1 \n jnz L1 | add 1 to ebx and jump to L1 if the result is not zero |
139 | add eax, 10 | add 10 to eax |
140 | add eax, 10 | add 10 to the contents of eax |
141 | add eax, 16 | add 16 to eax |
142 | add eax, 2 | add 2 to the contents of the eax register |
143 | add eax, 2 | add 2 to the eax register |
144 | add eax, 2 | add decimal 2 to eax register |
145 | add eax, 24 | add 24 to eax |
146 | add eax, 3 \n jnz L3 | add 3 to ecx and jump to L3 if the sum is not zero |
147 | add eax, 4 | add 4 to eax |
148 | add eax, 4 \n jnz decode | add 4 to eax and jump to decode if the result is not zero |
149 | add eax, 40000h | add 40000h to eax register |
150 | add eax, 48 | add decimal 48 to eax |
151 | add eax, 48 | add 48 to eax |
152 | add eax, 9 \n jnz decode | add the value 9 to eax and jump to decode if the result is not zero |
153 | add eax, c | add c to eax |
154 | add eax, ebx | add the contents of ebx to the contents of eax |
155 | add eax, ebx | add the value on ebx to eax |
156 | add eax, ebx | add ebx to eax |
157 | add eax, ebx | add ebx to eax and store the result in eax |
158 | add eax, edx | add edx to eax |
159 | add eax, edx | add the contents of edx to the contents of eax |
160 | add eax, edx | add the contents of the edx register to the contents of eax register |
161 | add eax, esi | add the contents of esi to the contents of eax |
162 | add eax, esi | add the contents of the esi register to the contents of eax register |
163 | add eax,0xe458376a | add hexadecimal value 0xe458376a to eax register |
164 | add ebp, 0x2 | add 0x2 to the contents of ebp |
165 | add ebp, 0x2 | add 0x2 to ebp |
166 | add ebx, 0x2 | save sys_connect = 3 into ebx register |
167 | add ebx, 0x2 | add 0x2 to the contents in ebx and save the result in ebx |
168 | add ebx, 16 | add 16 to ebx |
169 | add ebx, 2 | add decimal integer 2 to ebx |
170 | add ebx, 2 | add 2 to the contents of the ebx register |
171 | add ebx, 24 | add 48 to ebx |
172 | add ebx, 3 | add the value 3 to the content of ebx register |
173 | add ebx, 3 | add 3 to the contents of the ebx register |
174 | add ebx, 5 | add decimal integer 5 to ebx |
175 | add ebx, ecx | add ecx to ebx |
176 | add ebx,2 | add 2 to ebx content |
177 | add ecx, 1 | add the value 1 into the ecx register |
178 | add ecx, 16 | add 16 to ecx |
179 | add ecx, ebx | add ebx to ecx |
180 | add edi, 2 | add 2 to edi |
181 | add edi, 37 | add 37 to edi contents |
182 | add edi, edi | add the contents of edi to the contents of edi |
183 | add edi, edi | add the contents of the edi register to the contents of edi register |
184 | add edi,0x11111111 | add hexadecimal value 0x11111111 to edi content |
185 | add edx, 16 | set edx to next 16 byte block |
186 | add edx, 32 | add 32 to edx |
187 | add edx, 48 | add 48 to edx |
188 | add edx, 64 | add the value 64 to the content of edx register |
189 | add edx, 64 | add 64 to the contents of the edx register |
190 | add edx, eax | add the contents of eax to the contents of edx |
191 | add edx, eax | add the contents of the eax register to the contents of edx register |
192 | add edx, eax | add the contents of the eax register to the edx register |
193 | add edx, ecx | add ecx to edx |
194 | add edx,ebx | add ebx content to edx |
195 | add esi, 0x21354523 | add 0x21354523 to the contents in esi and save the result in esi |
196 | add esi, 0x21354523 | add 0x21354523 to the contents of esi |
197 | add esi, 0x30 | add hexadecimal value 0x30 to esi content |
198 | add esi, 0x30 | add 0x30 to esi |
199 | add esi, 0x33333333 | add the hexadecimal value 0x33333333 at esi content |
200 | add esi, 0x33333333 | add 0x33333333 value to esi |
201 | add esi, 0x3f3f3f3f | add 0x3f3f3f3f to the contents in esi and save the result in esi |
202 | add esi, 0x8 | add 0x8 to esi |