Examples of using Shellcode in English and their translations into Chinese
{-}
-
Political
-
Ecclesiastic
-
Programming
Create your own shellcode.
The second stage shellcode will then perform the following actions:.
第二阶段shellcode随即会执行下列动作:.Writing your own shellcode.
执行你的shellcode.And below is the shellcode associated with the x64 version of the PE Loader.
以下是与PEloaderx64版本相关的shellcode。Which is called shellcode.
这些指令被称为shellcode。Shellcode_exec- Create a suspended process and inject shellcode into it.
Shellcode_exec-创建一个挂起进程,并把shellcode注入到这个进程然后,恢复进程。ExitProcess will terminate the process running the shellcode.
ExitProcess将终止运行shellcode的进程.Here it is, we can clearly see the shellcode will just opens a calc.
在这里,我们可以清楚地看到shellcode只会打开一个calc.Understanding these concepts allows you to write your own shellcode.
理解这些概念可以有助于我们编写自己的shellcode。You will get a new window will the shellcode decoded into bytes(you can even save it to file):.
您将获得一个新窗口将shellcode解码为字节(您甚至可以将其保存到文件中):.Shellcode is loading the library needed to manipulate sockets(ws2_32. dll), and tries to connect back to C&C.
可以看到,Shellcode正在加载操作套接字所需的库(ws2_32.dll),并尝试回连C&C。This backdoor is a fascinating passive-active shellcode staging implant.
这个后门是一种令人着迷的、被动的、shellcode分期植入物。Shellcode is loading the library needed to manipulate sockets(ws2_32. dll), and tries to connect back to C&C.
在这里,Shellcode在加载操作套接字所需的库(ws2_32.dll),并尝试连回C&C服务器。The code in this web page triggers the UAF and a shellcode that downloads a malicious payload is executed.
该网页中的代码触发UAF,并执行下载恶意负载的shellcode。Shellcode is loading the library needed to manipulate sockets(ws2_32. dll), and tries to connect back to C&C.
呃,自我解释吧?Shellcode正在加载操作套接字所需的库(ws2_32.dll),并尝试连接回C&C。Other important sub-projects include the Opcode Database, shellcode archive, and security research.
其他重要的子项目包括Opcode数据库、shellcode档案、安全研究等内容。Shellcode is literally injected into a running program, where it takes over like a biological virus inside a cell.
ShellcodeShellcode的路径实际上被注入了一个运行程序,在那里它就像一个细胞内的生物病毒一样。Code execution does not use the traditional ROP or GodMod,but through the script layout Shellcode to stabilize the use.
代码执行并没有使用传统的ROP或者GodMod,而是通过脚本布局Shellcode来稳定利用。For this example, I just used calc spawning shellcode, which resulted in a child process being spawned under Excel. exe.
在这个演示示例中,我刚刚使用了启动计算器的shellcode,导致在Excel.exe下生成一个子进程。The HTML/JS launcher page serves a Flash exploit which triggers a Zero-Day vulnerability(CVE-2015-3043)and executes a shellcode.
接着HTML/JS启动器页面提供触发零日漏洞(CVE-2015-3043)并执行shellcode。The shellcode is then written into that allocation and then a thread is kicked off, pointing to the top of the shellcode.
然后将shellcode写入相应的内存,之后线程被启动,并指向shellcode的顶部。The executable sideloads the malicious DLL(libcurl. dll),which decrypts and runs shellcode(3F2E3AB9) located in the same folder.
可执行侧载恶意DLL(libcurl.dll),它解密并运行位于同一文件夹中的shellcode(3F2E3AB9)。How to create different types of shellcode to develop your own proof-ofconcept exploits and necessary software to test and identify vulnerabilities.
如何创建不同类型的shellcode来开发自己的概念验证漏洞攻击程序和必要的软件,以测试和识别漏洞.If the exploit is successful, it will gain arbitrary read/ write operations within memory,thus allowing it to execute a second stage shellcode.
如果利用成功,它将在内存中获得任意读/写操作,从而允许它执行第二阶段的shellcode。The shellcode is a typical Metasploit shellcode, protected using the shikata_ga_nai encoder[7] with seven iterations.
Shellcode是一个典型的Metasploitshellcode,使用shikata_ga_nai编码器[7]进行七次迭代保护。Instead of simply starting a process,an attacker can write an assembly that injects shellcode into another process, which would bypass the parent-child relationship detection.
攻击者不用简单地启动一个进程,而是编写一个程序集,将shellcode插入到另一个进程中,从而绕过进程的父子关系的检测。Then, the shellcode downloads a Meterpreter, which is a typical Metasploit payload[6], allowing the attacker to control the compromised machine.
之后,shellcode下载一个Meterpreter,这是一个典型的Metasploit有效载荷[6],允许攻击者控制被入侵的机器。This book covers in detail the five most important disciplines for security professionals and software developers: Coding,Sockets, Shellcode, Porting Applications, and Coding Security tools.
涵盖了安全专家和软件开发人员必须注意的最重要的5个方面:编码、套接字、shellcode、移植应用和编写安全工具。Shellcode Compiler is a program that compiles C/C++ style code into a small, position-independent and NULL-free shellcode for Windows.
ShellcodeCompiler是一款能将C/C++代码编译成体积小,位置无关和无NULL字节的Windowsshellcode的工具。NET assembly in VBScript/JScript, we can achieve shellcode execution via the ScriptControl object by passing the VBScript/JScript code to the AddCode() method.
NET程序集,然后我们可以通过将VBScript/JScript代码传递给AddCode()方法,通过ScriptControl对象实现shellcode的执行。
