minat sekali: Emulating Shellcodes - Chapter 1

Sabtu, 27 Januari 2024

Emulating Shellcodes - Chapter 1

 There are many basic shellcodes that can be emulated from the beginning from the end providing IOC like where is connecting and so on. But what can we do when the emulation get stuck at some point?

The console has many tools to interact with the emulator like it was a debugger but the shellcode really is not being executed so is safer than a debugger.

target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin -vv 


In some shellcodes the emulator emulates millions of instructions without problem, but in this case at instruction number 176 there is a crash, the [esp + 30h] contain an unexpected 0xffffffff.

There are two ways to trace the memory, tracing all memory operations with -m or inspecting specific place with -i which allow to use registers to express the memory location:

target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin  -i 'dword ptr [esp + 0x30]'


Now we know that in position 174 the value 0xffffffff is set.

But we have more control if we set the console at first instruction with -c 1 and set a memory breakpoint on write.




This "dec" instruction changes the zero for the 0xffffffff, and the instruction 90 is what actually is changing the stack value.

Lets trace the eax register to see if its a kind of counter or what is doing.


target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin  --reg eax 


Eax is not a counter, is getting hardcoded values which is probably an API name:


In this case this shellcode depend on previous states and crash also in the debugger because of  register values. this is just an example of how to operate in cases where is not fully emulated.

In next chapter will see how to unpack and dump to disk using the emulator.


Related links


  1. Pentest Tools Find Subdomains
  2. Hack App
  3. Hacker Hardware Tools
  4. Hacker Tools List
  5. Hacker Security Tools
  6. Game Hacking
  7. Hackrf Tools
  8. World No 1 Hacker Software
  9. Pentest Tools Find Subdomains
  10. Hacker Tools Github
  11. Hacker Tools
  12. Ethical Hacker Tools
  13. Pentest Tools Android
  14. Hacks And Tools
  15. Computer Hacker
  16. Pentest Tools Framework
  17. Hacking Tools And Software
  18. Hacking Tools Github
  19. Pentest Tools Alternative
  20. How To Install Pentest Tools In Ubuntu
  21. Black Hat Hacker Tools
  22. Hack Tools Mac
  23. Hack Tools Online
  24. Hacker Tools Linux
  25. Hack Tools For Mac
  26. Pentest Tools Url Fuzzer
  27. Bluetooth Hacking Tools Kali
  28. Hack Tools For Games
  29. Pentest Tools Linux
  30. Best Hacking Tools 2019
  31. Hacking Tools For Games
  32. Hacker Tools
  33. Hack Website Online Tool
  34. Install Pentest Tools Ubuntu
  35. Hacking Tools And Software
  36. Tools 4 Hack
  37. Hacking Tools For Games
  38. Hacker Tools For Ios
  39. What Is Hacking Tools
  40. Pentest Tools Free
  41. Hack Tool Apk
  42. Hacker Hardware Tools
  43. Pentest Tools Android
  44. New Hack Tools
  45. Pentest Tools Tcp Port Scanner
  46. Pentest Tools For Ubuntu
  47. Pentest Tools Bluekeep
  48. Hacker Tool Kit
  49. What Are Hacking Tools
  50. Hacker Tools For Pc
  51. Hack Tools Online
  52. Hacker Tools List
  53. Pentest Tools For Android
  54. Hacker Tools For Ios
  55. Hacking Tools For Mac
  56. Pentest Tools Free
  57. Pentest Tools Subdomain
  58. Hacking Tools For Kali Linux
  59. Usb Pentest Tools
  60. Hacker Tools Free
  61. Pentest Tools Bluekeep
  62. Hack Tools Download
  63. Hack Rom Tools
  64. Hacking Tools For Mac
  65. Pentest Tools Website Vulnerability
  66. Black Hat Hacker Tools
  67. Kik Hack Tools
  68. Pentest Tools Free
  69. Hack App
  70. World No 1 Hacker Software
  71. Hacker Tools Online
  72. Hack And Tools
  73. Hacker Tools 2019
  74. Pentest Tools List
  75. Hack Tools
  76. Hack Tools Github
  77. Hack Tool Apk
  78. Hacking Tools For Windows 7
  79. Hacking Tools For Windows 7
  80. Tools 4 Hack
  81. How To Make Hacking Tools
  82. Hack Tools For Games
  83. Pentest Tools
  84. Hack Tools For Pc
  85. Pentest Tools Website
  86. Hack Tools Download
  87. Pentest Tools Tcp Port Scanner
  88. Pentest Tools Alternative
  89. Hacker Tools Online
  90. Hack Tools For Pc
  91. Hacker Tools Free
  92. Hacking Tools Mac
  93. Pentest Tools Kali Linux
  94. Hacker Tools For Mac
  95. Hacking Tools Software
  96. Growth Hacker Tools
  97. Hacker Tools For Ios
  98. Hak5 Tools
  99. Hack Tools For Windows
  100. Hacker Tools Apk Download
  101. Hacker Techniques Tools And Incident Handling
  102. Hacking Tools Download
  103. Hack Apps
  104. Pentest Tools
  105. Pentest Tools Linux
  106. Hack Tools
  107. Pentest Tools Github
  108. Pentest Tools Linux
  109. Blackhat Hacker Tools
  110. Usb Pentest Tools
  111. Hackers Toolbox
  112. Pentest Tools Nmap
  113. New Hacker Tools
  114. Pentest Tools Download
  115. Android Hack Tools Github
  116. Hacking Tools For Kali Linux
  117. Top Pentest Tools
Diposting oleh di

Tidak ada komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)