Home > Others

Hello to the Shellcode

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Method one, with MOV, code:

Hello_mov.asm
section. Data
        msg db "Hello, world!, 0xA
        len equ $-Msg section
. Text
Global _start< C5/>_start:
        mov edx, len
        mov ecx, msg
        mov ebx, 1
        mov eax, 4
        int 0x80

        mov ebx, 0
        mov eax, 1< C13/>int 0x80


Method Two, with XOR, code:

Hello_xor.asm
section. Data
        msg db "Hello, world!, 0xA
        len equ $-Msg section
. Text
Global _s Tart
        _start:
        xor eax,eax
        xor ebx,ebx
        xor ecx,ecx
        xor Edx,edx

        mov dl, len
        mov ecx, MSG
        mov bl, 1
        mov al, 4
        int 0x80

        mov bl, 0
        mov al, 1
        int 0x80

After compiling the connection, then disassemble and look at the

[Root@localhost shellcode]# nasm-f elf hello_mov.asm
[root@localhost shellcode]# 
[root@localhost shellcode]# Ld-o Hello_mov hello_mov.o
[root@localhost shellcode]# 
[root@localhost shellcode]#] [ 
root@localhost shellcode]#/hello_mov 
Hello, world!
. [Root@localhost shellcode]# objdump-d Hello_mov

Hello_mov:     file format elf32-i386


disassembly of section. Text:

08048080 <_start>:
 8048080:       ba 0e          mov    $0xe,%edx
 8048085:       B9 A4    $0x80490a4,%ecx
 804808a:       bb          mov    $0x1,%ebx
 804808f:       B8          mov    $0x4,%eax
 8048094:       cd                   int    $0x80
 8048096:       BB 00 00 80          mov    $0x0,%ebx
 804809b:       b8          mov    $0x1,%eax
 80480a0:       CD                   int    $0x80


[Root@localhost shellcode]# nasm-f elf hello_xor.asm [root@localhost shellcode]# ld-o hello_xor hello_xor.o [root@local
Host shellcode]#./hello_xor Hello, world! [Root@localhost shellcode]# objdump-d hello_xor hello_xor:file format elf32-i386 disassembly of section. text:0 8048080 <_start&gt: 8048080:31 c0 xor%eax,%eax 8048082:31 db x or%EBX,%EBX 8048084:31 C9 xor%ecx,%ecx 8048086:31 D2 xor%e Dx,%edx 8048088:b2 0e mov $0xe,%dl 804808a:b9 9c mov $0x804909c, %ECX 804808F:B3 mov $0x1,%bl 8048091:b0 mov $0x4,%al 8048  093:CD int $0x80 8048095:B3 mov $0x0,%bl 8048097:b0 mov $0x1,%al 8048099:cd int $0x80 [root@localHost shellcode]#


Compared to the following:

MOV ecx,0
is 5 bytes, while
xor ecx,ecx
is 2 bytes

So, I see the general Shellcode code, are using XOR eax,eax instead of MOV eax,0

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to use hello bixby how to write hello world in java write statement prints hello world to screen get the permalink wordpress the field hello testing hello hello definition

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More