1 / 8

Shellcoding & Windows API Basics for MBC Creation

Learn shellcoding, Windows API, Linux syscalls, socket programming, and MBC creation. Course covers OS platforms Linux and Windows. Bonus for creating a shellcode generator program.

csalazar
Download Presentation

Shellcoding & Windows API Basics for MBC Creation

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Project 1 RueiMin Jiang

  2. What U Will Learn • 1. shellcoding • 2. windows API • 3. how to use linux system call • 4. some basic socket programming

  3. Project Goal • Describe in this link: • http://in1.csie.ncu.edu.tw/~hsufh/COURSES/FALL2012/security_project1.html

  4. Project Detailed • The MBC (Mission Briefing Code) need to be written in shellcode format. • Operating System Platform: • Linux • Windows • If you can write a program that will help u generate shellcode, what would be a bonus.

  5. Some Hints • Most Operating System enable ASLR by default. • Linux: • System Call • Disable ASLR by yourself. • Windows: • LoadLibraryA() • GetProcAddress()

  6. Grading Policy • Total 120 Points • Operating System is Linux : up to 80 • With System Call : up to 80 • With Function Call : up to 80 • Operating System is Windows: • With Static Function Address : up to 80 • With Dynamic Function Address : up to 90 • Bonus: 30 points • According to your answer to TA’s questions.

  7. Reference Material • http://www.hick.org/code/skape/papers/win32-shellcode.pdf • http://insecure.org/stf/smashstack.html • http://www.vividmachines.com/shellcode/shellcode.html • http://msdn.microsoft.com/en-us/library/windows/desktop/hh920509%28v=vs.85%29 • http://msdn.microsoft.com/en-us/library/windows/desktop/ms680547%28v=vs.85%29.aspx • http://mike820324.blogspot.tw/search/label/shell%20code

  8. Keyword • Shellcode • Position Independent Code • PEB(Process Entry Block)

More Related