Difference between revisions of "Category:Shellcode"
Levi99Vmsb (Talk | contribs) (cant move into category so just have to recreate) |
(No difference)
|
Revision as of 09:14, 7 June 2012
Every programming language eventually becomes binary, whether at compile-time or runtime. When writing a buffer overflow there are many obstructions from security infrastructure, such as DEP, ASLR, firewalls, or IDS and IPS appliances, thus many filter bypass and IDS evasion techniques (such as alphanumeric shellcode) must be utilized for successful exploitation in modern environments in conjunction with anti-heuristics and obfuscation for maximum effectiveness. There are primarily two types of shellcode: executable shellcode and return-oriented shellcode.
Executable shellcode is typically translated from assembly written for its respective target Operating System.
- Basic executable shellcode, or traditional null-free shellcode can be used on any vulnerable application (sans filters) with an executable stack.
- 32-bit ascii shellcode and 64-bit alphanumeric shellcode are commonly used for filter bypass and IDS evasion.
Return oriented shellcode utilizes return oriented programming in cases when the vulnerable buffer is non-executable, bypassing the need for an executable stack.
<center>
Pages in category "Shellcode"
The following 40 pages are in this category, out of 40 total.