|
|
|
UTF8 Shellcode
|
|
Hits: 6 |
|
Date added: 05/21/2005 |
|
|
|
|
|
|
|
Understanding Windows Shellcode
|
|
Hits: 48 |
|
Date added: 01/29/2006 |
|
The topics and assembly in this document have been analyzed in the interest
of spreading knowledge and initiating discussions on the topic of Windows
shellcode. The author is in no way implying that the assembly presented in
this document is the best, nor should one infer that the author speaks from a
pedestal higher than that of the reader. It is the author’s hope that readers will
make suggestions and comments on the subject matter. |
|
|
|
|
|
Understanding how the Import table works
|
|
Hits: 14 |
|
Date added: 09/19/2006 |
|
This paper will give you a graphic representation of the binary structure used for the PE import table and explains why this design mechanism was required.
A download package is also available which shows a very simple exe in packed and unpacked states. This package also includes a memory dump with broken imports to give you a simple trainer to try to restore to apply the knowledge gained in the paper.
A small beta quality open source utility is also available which lets you rewrite the import table of an exe as you desire. |
|
|
|
|
|
|
