INTRODUCTION

This tutorial is part of the SecurityTube Linux Assembly Expert certification.

The goal of this assignment is to take three x86/Linux shellcode samples from Metasploit’s Msfpayload tool, use GDB/Ndisasm/Libemu to dissect their functionality and present an analysis.

For this blog post I will be specifically analyzing the linux/x86/exec payload.

The tutorial will contain example source with comments. Listed source code may have formatting issues so best place to obtain copies is from the project’s Github repo.

This assignment will build from the previous assignments and so will not be reiterating explanations already covered there.

Methodology

Obtain as much information about the payload as possible through documentation. How does it work, expected parameters, end result once detonated
Analyze payload using Libemu
Test shellcode

Payload Information

We can obtain a summary on the payload by passing the S for summary switch to msfpayload

$ msfpayload linux/x86/exec S [!] ************************************************************************ [!] *…

View original post 1,675 more words

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (Address never made public)

Name

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

youremindmeofmymother

SLAE-473 ASSIGNMENT #5-2 msfpayload linux/x86/exec Analysis

INTRODUCTION

Methodology

Payload Information

Leave a Reply Cancel reply

INTRODUCTION

Methodology

Payload Information

Rate this:

Share this:

Like this:

Leave a Reply Cancel reply