Ryan:
Consider examining "Hellkit" by stealth. You provide it with your shellcode
in C, and it will extract the opcodes, remove null bytes, and give you the
shellcode in hexidecimal. It was designed for linux/x86. The README inside
the tarball explains the workings of the system, and it comes with sample
exploits. It can also extract the opcodes and remove null bytes from your
assembly too. The website where I originally downloaded this is unavailable
(www.kalug.lug.net/stealth): so I have mirrored it here:
http://www.subterrain.net/tools/exploit-development/hellkit/
Signed,
-jbl
On Sun, May 19, 2002 at 10:29:05AM -0400, Ryn wrote:
> Howdy,
>
> Do any documents exist explaining how to covert assembly op codes and
> operands to hex? I can use "gdb" or "dis" on Solaris to get:
>
> bc 10 20 00 clr %fp
> e0 03 a0 40 ld [%sp + 64], %l0
> a2 03 a0 44 add %sp, 68, %l1
> 9c 23 a0 20 sub %sp, 32, %sp
> 80 90 00 01 orcc %g0, %g1, %g0
>
> I want to see how to get column 1 - 4 by hand.
>
> Thanks for any info,
> Ryan
>
>
--
---=[ Practice is not a matter of years and months. It is concentration. ]=--
---=[ Email: jblat_private o0o Web: http://www.subterrain.net/~jbl/ ]=--
---=[ PGP fingerprint: 345A A958 67A3 A215 0270 5102 8002 8B4C 3803 A9BC ]=--
This archive was generated by hypermail 2b30 : Sun May 19 2002 - 15:30:44 PDT