Whitepaper - Writing small shellcode

To: <bugtraq@xxxxxxxxxxxxxxxxx>, <vuln-dev@xxxxxxxxxxxxxxxxx>
Subject: Whitepaper - Writing small shellcode
From: "Dafydd Stuttard" <daf@xxxxxxxxxxxxxxx>
Date: Mon, 19 Sep 2005 14:06:20 +0100
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Thread-index: AcW9Gu3msZsTMq8uSjeJ+mEamGkJCQ==

I have written a short whitepaper describing techniques for writing small
shellcode. This can be downloaded from:

http://www.ngssoftware.com/papers/WritingSmallShellcode.pdf

Abstract
This paper describes an attempt to write Win32 shellcode that is as small as
possible, to perform a common task subject to reasonable constraints. The
solution presented implements a bindshell in 191 bytes of null-free code,
and outlines some general ideas for writing small shellcode.

Cheers,

Dafydd Stuttard
Principal Security Consultant
NGS Software Ltd

Prev by Date: @System Security Conference
Next by Date: [ GLSA 200509-13 ] Clam AntiVirus: Multiple vulnerabilities
Previous by thread: @System Security Conference
Next by thread: [ GLSA 200509-13 ] Clam AntiVirus: Multiple vulnerabilities
Index(es):
- Date
- Thread