Author: David Zimmer
Date: 06.24.11 - 7:56am
I have been seeing more and more shellcode written in high level languages lately. This last week alone i think I have seen about 5 distinct samples.
The only public hll shellcode templates i have found for Windows are one by didier stevens, and one called WishMaster.
What i am seeing falls into the following catagories:
Multistage shellcode is also still alive and well, but everything i have seen is file format based. Extracting level 2 shellcode from the parent file and/or extracting exe payloads from the host exploit file.
Comments: (1)On 07.04.11 - 8:20am Dave wrote: