Shellcode
In hacking, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode. Because the function of a payload is not limited to merely spawning a shell, some have suggested that the name shellcode is insufficient. However, attempts at replacing the term have not gained wide acceptance. Shellcode is commonly written in machine code.
- Abstraction100002137
- Accomplishment100035189
- Act100030358
- Action100037396
- ArtificialLanguage106894544
- Communication100033020
- Event100029378
- Feat100036762
- Language106282651
- musical work
- ProgrammingLanguage106898352
- PsychologicalFeature100023100
- WikicatComputerSecurityExploits
- WikicatInjectionExploits
- WikicatProgrammingLanguages
- YagoPermanentlyLocatedEntity
- Comment
- enIn hacking, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode. Because the function of a payload is not limited to merely spawning a shell, some have suggested that the name shellcode is insufficient. However, attempts at replacing the term have not gained wide acceptance. Shellcode is commonly written in machine code.
- Date
- 3 April 2015
- Has abstract
- enIn hacking, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode. Because the function of a payload is not limited to merely spawning a shell, some have suggested that the name shellcode is insufficient. However, attempts at replacing the term have not gained wide acceptance. Shellcode is commonly written in machine code. When creating shellcode, it is generally desirable to make it both small and executable, which allows it to be used in as wide a variety of situations as possible. Writing good shellcode can be as much an art as it is a science. In assembly code, the same function can be performed in a multitude of ways and there is some variety in the lengths of opcodes that can be used for this purpose; good shellcode writers can put these small opcodes to use to create more compact shellcode. Some have reached the smallest possible size while maintaining stability.
- Hypernym
- Piece
- Is primary topic of
- Shellcode
- Label
- enShellcode
- Link from a Wikipage to an external page
- web.archive.org/web/20061112203748/http:/www.milw0rm.com/papers/11
- www.infosecwriters.com/text_resources/pdf/basics_of_shellcoding.pdf
- code.google.com/p/alpha3/
- code.google.com/p/beta3/
- www.rosiello.org/
- www.shell-storm.org/shellcode/
- archive.today/20130219020328/http:/libemu.carnivore.it/
- web.archive.org/web/20060619025456/http:/www.linux-secure.com/endymion/shellcodes/
- web.archive.org/web/20080302111910/http:/www.metasploit.com/shellcode/
- web.archive.org/web/20150403114315/http:/skypher.com/wiki/index.php%3Ftitle=Www.edup.tudelft.nl%2F~bjwever%2Fwhitepaper_shellcode.html.php
- sandsprite.com/blogs/index.php%3Fuid=7&pid=152
- www.phrack.org/issues.html%3Fissue=49&id=14%23article
- web.archive.org/web/20210322094322/http:/www.enderunix.org/docs/en/sc-en.txt
- github.com/dzzie/sclog
- www.vividmachines.com/shellcode/shellcode.html
- sandsprite.com/shellcode_2_exe.php
- github.com/geyslan/SLAE/blob/master/improvements/tiny_shell_bind_tcp_random_port_x86_64.asm
- skypher.com/wiki/index.php%3Ftitle=Www.edup.tudelft.nl/~bjwever/whitepaper_shellcode.html.php
- web.archive.org/web/20120109070051/http:/goodfellas.shellcode.com.ar/docz/bof/Writing_shellcode.html
- web.archive.org/web/20061115040739/http:/www.ngssoftware.com/research/papers/WritingSmallShellcode.pdf
- Link from a Wikipage to another Wikipage
- Alphanumeric
- Alphanumeric code
- ASCII
- Buffer overflow
- Category:Injection exploits
- Central processing unit
- Character encodings in HTML
- Computer security
- Control character
- Downloads
- Drive-by download
- Dynamic loading
- ECHO (command)
- Execution (computers)
- Exploit (computer security)
- Firewall (computer)
- Hacker (computer security)
- Heap overflow
- IA-32
- INC (x86 instruction)
- Instruction set architecture
- Internet
- Internet protocol suite
- Intranet
- Intrusion detection
- Latin-1
- Library (computing)
- Local area network
- Machine code
- Metasploit Project
- MOV (x86 instruction)
- Multi-architecture executable
- NOP slide
- Null character
- Null-terminated string
- Operating system
- Payload (computing)
- Percent-encoding
- Phrack
- Platform (computing)
- Polymorphic code
- Printable character
- Program counter
- Self-modifying code
- Service pack
- Shell (computing)
- Shell shoveling
- Stack buffer overflow
- Stream socket
- Unicode
- UTF-16
- Vulnerability (computing)
- X86
- X86-64
- XOR (x86 instruction)
- SameAs
- D12A
- Kod cangkerang
- m.01fy4f
- Q1152477
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Shellcode
- Шелл-код
- Шелл-код
- קוד ייעודי
- نص واجهة الأوامر البرمجي
- シェルコード
- 셸코드
- Subject
- Category:Injection exploits
- Url
- index.php%3Ftitle=Www.edup.tudelft.nl%2F~bjwever%2Fwhitepaper shellcode.html.php
- WasDerivedFrom
- Shellcode?oldid=1116832304&ns=0
- WikiPageLength
- 25789
- Wikipage page ID
- 218067
- Wikipage revision ID
- 1116832304
- WikiPageUsesTemplate
- Template:Anchor
- Template:Code
- Template:Information security
- Template:Mono
- Template:Redir
- Template:Reflist
- Template:Short description
- Template:Webarchive