The tasks for assignment 6 were: Take up 3 shellcodes from Shell-‐Storm and create polymorphic versions of them to beat pattern matching The polymorphic versions cannot be larger 150% of the existing shellcode Bonus points for making it shorter in length than original Polymorphism, for purposes of this assignment, is to change some of the…
All posts in Shellcode
SLAE Assignment #4 – Customer Encoder
The goals for Assignment #4 are: Create a custom encoding scheme like the “InsertionEncoder” we showed you PoC with using execve-stack as the shellcode to encode with your schema and execute For my custom encoder, I decided to make what would be a “ROT13” or rotate 13 encoder. A python script would take the hex…
SLAE Assignment #3 – Egghunter
Assignment #3 for the SLAE certification asks the student to do the following: Study about the Egg Hunter shellcode Create a working demo of the Egghunter Should be configurable for different payloads Based on what I found during my research, the basic idea behind an egg hunter is that you will have the first stage…
SLAE Assignment #2 – Reverse TCP Shell
Assignment #2 for the SLAE certification asks the student to do the following: Create a Shell_Reverse_TCP shellcode Reverse connects to configured IP and port Execs Shell on successful connection IP and Port should be easily configurable Analysis of Metasploit Shellcode Similar to the Bind shell post, I began this assignment by using msfvenom to generate…
SLAE Assignment #1 – TCP Bind Shell
Assignment #1 for the SLAE certification asks the student to do the following: Create a Shell_Bind_TCP shellcode Binds to a port Execs Shell on incoming connection Port number should be easily configurable Analysis of Metasploit Shellcode To begin, I first wanted to analyze how a TCP bind shell works. I used msfvenom to generate the…