📄 关于windows下shellcode编写的一点思考.mht
字号:
action=3Dtopicadmin.php?action=3Ddelpost&fid=3D144&tid=3D30054&am=
p;page=3D1=20
method=3Dpost>
<TABLE cellSpacing=3D0 cellPadding=3D0 width=3D"100%" =
align=3Dcenter border=3D0>
<TBODY>
<TR>
<TD bgColor=3Ddarkblue>
<TABLE cellSpacing=3D1 cellPadding=3D0 width=3D"100%">
<TBODY>
<TR bgColor=3D#e8f2cf>
<TD class=3Dmulti></TD>
<TD align=3Dright><A=20
=
href=3D"http://25.20.176.12/bbs/post.php?action=3Dnewthread&fid=3D144=
"><IMG=20
=
src=3D"http://25.20.176.12/bbs/images/default/newtopic.gif"=20
border=3D0></A> <A=20
=
href=3D"http://25.20.176.12/bbs/post.php?action=3Dnewthread&fid=3D144=
&poll=3Dyes"><IMG=20
=
src=3D"http://25.20.176.12/bbs/images/default/poll.gif"=20
border=3D0></A> <A=20
=
href=3D"http://25.20.176.12/bbs/post.php?action=3Dreply&fid=3D144&=
;tid=3D30054"><IMG=20
=
src=3D"http://25.20.176.12/bbs/images/default/reply.gif"=20
border=3D0></A> </TD></TR></TBODY></TABLE></TD></TR>
<TR>
<TD bgColor=3Ddarkblue>
<TABLE cellSpacing=3D1 cellPadding=3D4 width=3D"100%" =
border=3D0>
<TBODY>
<TR class=3Dheader>
<TD width=3D152>=D7=F7=D5=DF:</TD>
<TD>
<TABLE class=3Dsmalltxt=20
style=3D"TABLE-LAYOUT: fixed; WORD-WRAP: break-word"=20
cellSpacing=3D0 cellPadding=3D0 width=3D"100%" =
border=3D0>
<TBODY>
<TR style=3D"COLOR: #ffffff">
<TD class=3Dbold>=B1=EA=CC=E2: =
=B9=D8=D3=DAWindows=CF=C2ShellCode=B1=E0=D0=B4=B5=C4=D2=BB=B5=E3=CB=BC=BF=
=BC</TD>
<TD noWrap align=3Dright width=3D150><A=20
style=3D"FONT-WEIGHT: normal; COLOR: #ffffff"=20
=
href=3D"http://25.20.176.12/bbs/redirect.php?fid=3D144&tid=3D30054&am=
p;goto=3Dnextoldset">=C9=CF=D2=BB=D6=F7=CC=E2</A>=20
| <A style=3D"FONT-WEIGHT: normal; COLOR: =
#ffffff"=20
=
href=3D"http://25.20.176.12/bbs/redirect.php?fid=3D144&tid=3D30054&am=
p;goto=3Dnextnewset">=CF=C2=D2=BB=D6=F7=CC=E2</A></TD></TR></TBODY></TABL=
E></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE><A=20
name=3Dpid276798>
<TABLE cellSpacing=3D0 cellPadding=3D0 width=3D"100%" =
align=3Dcenter border=3D0>
<TBODY>
<TR>
<TD bgColor=3Ddarkblue>
<TABLE style=3D"TABLE-LAYOUT: fixed; WORD-WRAP: break-word"=20
cellSpacing=3D1 cellPadding=3D4 width=3D"100%" border=3D0>
<TBODY>
<TR bgColor=3D#e8f2ff>
<TD vAlign=3Dtop width=3D160>
<FIELDSET><LEGEND><A=20
=
href=3D"http://25.20.176.12/bbs/viewthread.php?tid=3D30054#endpid276798">=
<IMG=20
alt=3D=D7=AA=B5=BD=B5=DA1=CC=F9=C4=A9=CE=B2=20
=
src=3D"http://25.20.176.12/bbs/images/default/threadnext.gif"=20
border=3D0></A> <FONT title=3DPID=3D276798 =
color=3Dred>=C2=A5=D6=F7</FONT>=20
</LEGEND>
<TABLE style=3D"TABLE-LAYOUT: fixed" cellSpacing=3D0 =
cellPadding=3D0=20
width=3D"100%" border=3D0>
<TBODY>
<TR>
<TD>
<CENTER>
<H3>sd</H3></CENTER><BR></TD></TR>
<TR bgColor=3D#e8f2cf>
<TD align=3Dmiddle><IMG=20
=
src=3D"http://25.20.176.12/bbs/customavatars/54.gif"=20
border=3D0></TD></TR>
<TR>
<TD align=3Dmiddle><IMG=20
=
src=3D"http://25.20.176.12/bbs/images/default/star.gif"><IMG=20
=
src=3D"http://25.20.176.12/bbs/images/default/star.gif"></TD></TR></TBODY=
></TABLE></FIELDSET>=20
<TABLE cellSpacing=3D0 cellPadding=3D3 width=3D"100%" =
border=3D0>
<TBODY>
<TR>
<TD class=3Drow><IMG height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =CD=B7=CF=CE: <FONT =
color=3Dred>=BC=BC=CA=F5=D4=B1</FONT></TD></TR>
<TR>
<TD class=3Drow><IMG height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =D1=AB=D5=C2: <IMG =
alt=3D=CA=AE=BC=B6---=B5=B1=B5=B1=D6=AE=CD=F5=20
=
src=3D"http://25.20.176.12/bbs/images/medal/piaoliang10.gif">=20
<BR></TD></TR>
<TR>
<TD class=3Drow><IMG height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =D0=D4=B1=F0: <FONT =
color=3Dred>=C4=D0<IMG title=3D=D0=D4=B1=F0=A3=BA=C4=D0=20
=
src=3D"http://25.20.176.12/bbs/images/default/male.gif">=20
</FONT><!--(=B7=A2=CC=F9:<font =
color=3D"red">432</font>=C6=AA)--></TD></TR>
<TR>
<TD class=3Drow title=3D"=BB=FD=B7=D6:17 =
=B7=D6<br>=B7=A2=CC=F9:432 =C6=AA"><IMG height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =BB=FD=B7=D6: <FONT =
color=3Dred>17</FONT>=B7=D6<!--(=B7=A2=CC=F9:<font =
color=3D"red">432</font>=C6=AA)--></TD></TR>
<TR>
<TD class=3Drow =
title=3D"=BE=AB=BB=AA=D6=B8=CA=FD:8 =B7=D6<br>=B7=A2=CC=F9:432 =
=C6=AA"><IMG=20
height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =B7=A2=CC=F9: <FONT =
color=3Dred>432</FONT>=C6=AA</TD></TR>
<TR>
<TD class=3Drow=20
=
title=3D"=B2=C6=B8=BB:86+100<br>=CF=D6=BD=F0:86<br>=B4=E6=BF=EE:100<br>=BC=
=D2=CD=BD=CB=C4=B1=DA"><IMG=20
height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =B2=C6=B8=BB: <FONT =
color=3Dred>186</FONT> =BD=F0=B1=D2</TD></TR>
<TR>
<TD class=3Drow=20
title=3D"=B1=E0=BA=C5: =
<b>54</b></br>=C0=B4=D7=D4:<br>=D7=A2=B2=E1: 2003-5-22"><IMG=20
height=3D11=20
=
src=3D"http://25.20.176.12/bbs/images/default/ball.gif"=20
width=3D10> =B1=E0=BA=C5: =A1=ED54<IMG =
title=3D"=D7=B4=CC=AC <b>=D4=DA=CF=DF</b>"=20
=
src=3D"http://25.20.176.12/bbs/images/default/online_user.gif"=20
align=3DabsMiddle> =
</TD></TR></TBODY></TABLE></TD>
<TD height=3D"100%">
<TABLE style=3D"TABLE-LAYOUT: fixed; WORD-WRAP: =
break-word"=20
height=3D"100%" cellSpacing=3D0 cellPadding=3D0 =
width=3D"100%"=20
border=3D0>
<TBODY>
<TR>
<TD vAlign=3Dtop><SPAN class=3Dbold><SPAN=20
=
class=3Dsmalltxt>=B9=D8=D3=DAWindows=CF=C2ShellCode=B1=E0=D0=B4=B5=C4=D2=BB=
=B5=E3=CB=BC=BF=BC<BR><BR></SPAN></SPAN><BR>=B9=D8=D3=DAWindows=CF=C2Shel=
lCode=B1=E0=D0=B4=B5=C4=D2=BB=B5=E3=CB=BC=BF=BC<BR><BR> =20
=
=20
=
=20
=
=20
By=20
=
Hume/=C0=E4=D3=EA<BR><BR> =B9=D8=D3=DAShellCode=B1=E0=D0=B4=B5=
=C4=CE=C4=D5=C2=BF=C9=CE=BD=B6=E0=C8=E7=C5=A3=C3=AB=A1=A3=BE=AD=B5=E4=B5=C4=
=D3=D0yuange=A1=A2watercloud=B5=C8=C7=B0=B1=B2=B5=C4=CE=C4<BR>=D5=C2=A3=AC=
=B5=AB=B4=F3=B6=BC=B9=FD=D3=DA=D7=A8=D2=B5=BA=CD=BC=F2=C1=B7=A3=AC=B6=D4=CE=
=D2=D5=E2=D1=F9=B5=C4=B3=F5=D1=A7=D5=DF=D1=A7=CF=B0=C6=F0=C0=B4=BB=B9=CA=C7=
=D3=D0=B2=BB=D0=A1=B5=C4=C4=D1=B6=C8=A1=A3=D2=F2=B4=CB=B0=D1=D7=D4=BC=BA<=
BR>=B5=C4=D2=BB=B5=E3=CF=EB=B7=A8=BC=C7=C2=BC=CF=C2=C0=B4=A3=AC=D2=D4=CE=BF=
=CD=AC=B2=CB=A1=A3<BR><BR><BR>=CE=D2=B2=BB=CA=C7=B9=A4=BE=DF=C2=DB=D5=DF=A3=
=AC=B5=AB=BA=CF=CA=CA=B5=C4=B9=A4=BE=DF=CE=DE=D2=C9=BB=E1=CC=E1=B8=DF=B9=A4=
=D7=F7=D0=A7=C2=CA=A3=AC=B6=F8=C8=E7=BA=CE=D1=A1=C8=A1=BA=CF=CA=CA=B5=C4=B9=
=A4=BE=DF=BA=CD=B1=E0=D0=B4<BR>ShellCode=B5=C4=C4=BF=B5=C4=BC=B0ShellCode=
=B5=C4=D4=CB=D0=D0=BB=B7=BE=B3=CA=C7=D6=B1=BD=D3=CF=E0=B9=D8=B5=C4=A1=A3S=
hellCode=D2=BB=B0=E3=CA=C7=CD=A8=B9=FD=D2=E7=B3=F6=B5=C8<BR>=B7=BD=CA=BD=BB=
=F1=C8=A1=D6=B4=D0=D0=C8=A8=B5=C4=A3=AC=B2=A2=C7=D2=D2=AA=D4=DA=D6=B4=D0=D0=
=CA=B1=B5=F7=D3=C3=C4=BF=B1=EA=CF=B5=CD=B3=B5=C4API=BD=F8=D0=D0=D2=BB=D0=A9=
=B9=A4=D7=F7=A3=AC=D2=F2=B4=CB=BE=CD=D2=AA=C7=F3<BR>ShellCode=B2=C9=D3=C3=
=D2=BB=D6=D6=BD=CF=CE=AA=CD=A8=D3=C3=B5=C4=B7=BD=B7=A8=BB=F1=C8=A1=C4=BF=B1=
=EA=CF=B5=CD=B3=B5=C4API=BA=AF=CA=FD=B5=D8=D6=B7=A3=AC=C6=E4=B4=CE=D3=C9=D3=
=DA=C6=E4=D4=CB=D0=D0=B5=D8=D6=B7<BR>=C4=D1=D2=D4=C8=B7=B6=A8=A3=AC=D2=F2=
=B4=CB=B6=D4=CA=FD=BE=DD=B5=C4=D1=B0=D6=B7=D2=AA=B2=C9=D3=C3=B6=AF=CC=AC=B5=
=C4=B7=BD=B7=A8=A1=A3=C1=ED=CD=E2=A3=ACShellCode=D2=BB=B0=E3=CA=C7=D7=F7=CE=
=AA=CA=FD=BE=DD=B7=A2=CB=CD<BR>=B8=F8=CA=DC=B9=A5=BB=F7=B3=CC=D0=F2=B5=C4=
=A3=AC=B6=F8=CA=DC=B9=A5=BB=F7=B3=CC=D0=F2=D2=BB=B0=E3=BB=E1=B6=D4=CA=FD=BE=
=DD=BD=F8=D0=D0=B9=FD=C2=CB=A3=AC=D5=E2=B6=D4ShellCode=CC=E1=B3=F6=C1=CB=B1=
=E0=C2=EB=B5=C4=D2=AA<BR>=C7=F3=A3=AC=CF=D6=D4=DAShellCode=D3=C3=B5=C4=B1=
=E0=C2=EB=B7=BD=B7=A8=B1=C8=BD=CF=BC=F2=B5=A5=A3=AC=BB=F9=B1=BE=CA=C7XOR=B4=
=F3=B7=A8=BB=F2=C6=E4=B1=E4=D0=CE=A1=A3<BR><BR>=B1=E0=D0=B4ShellCode=D3=D0=
=C4=BF=C7=B0=C1=F7=D0=D0=B5=C4=D3=D0=C1=BD=D6=D6=B7=BD=B7=A8=A3=BA=D3=C3C=
=D3=EF=D1=D4=B1=E0=D0=B4+=CC=E1=C8=A1=A3=BB=D3=C3=BB=E3=B1=E0=D3=EF=D1=D4=
=B1=E0=D0=B4=BA=CD=CC=E1=C8=A1=A1=A3<BR><BR>=BE=CD=B8=F6=C8=CB=B8=D0=BE=F5=
=B6=F8=D1=D4=A3=AC=D3=C3=BB=E3=B1=E0=D3=EF=D1=D4=B1=E0=D0=B4=BA=CD=CC=E1=C8=
=A1=CA=C7=D7=EE=B7=BD=B1=E3=B5=C4=A3=AC=D2=F2=CE=AAShellCode=B4=FA=C2=EB=D2=
=BB=B0=E3=B1=C8=BD=CF=B6=CC=A3=AC=D2=AA<BR>=CD=EA=B3=C9=B5=C4=C8=CE=CE=F1=
=D2=B2=CF=E0=B6=D4=B5=A5=D2=BB=A3=AC=D2=BB=B0=E3=B2=BB=C9=E6=BC=B0=B8=B4=D4=
=D3=B5=C4=D4=CB=CB=E3=A1=A3=D2=F2=B4=CB=BF=C9=D2=D4=D3=C3=BB=E3=B1=E0=D3=EF=
=D1=D4=B1=E0=D0=B4=A1=A3=B6=F8=C7=D2=D3=C3=BB=E3=B1=E0<BR>=B1=E0=D0=B4=B1=
=E3=D3=DA=CA=FD=BE=DD=B5=C4=BF=D8=D6=C6=A1=A2=B4=FA=C2=EB=B6=A8=CE=BB=BC=B0=
=C9=FA=B3=C9=B5=C4=BF=D8=D6=C6=A3=AC=D4=DA=C4=B3=D0=A9=BB=E3=B1=E0=B1=E0=D2=
=EB=C6=F7=D6=D0=A3=AC=CC=E1=B9=A9=C1=CB=D6=B1=BD=D3=C9=FA=B3=C9=B6=FE=BD=F8=
=D6=C6<BR>=B4=FA=C2=EB=B9=A6=C4=DC=B2=A2=CC=E1=B9=A9=C1=CB=D6=B1=BD=D3=B0=
=FC=BA=AC=B6=FE=BD=F8=D6=C6=CE=C4=BC=FE=B5=C4=CE=B1=D6=B8=C1=EE=A3=AC=D5=E2=
=D1=F9=BE=CD=BF=C9=D2=D4=D6=B1=BD=D3=B1=E0=D0=B4=D2=BB=B8=F6makefile=CE=C4=
=BC=FE=BD=AB<BR>ShellCode=B4=FA=C2=EB=BA=CD=B9=A5=BB=F7=B3=CC=D0=F2=B7=D6=
=BF=AA=A3=AC=B7=D6=B1=F0=B1=E0=D0=B4=BA=CD=B5=F7=CA=D4=A3=AC=B6=F8=CE=DE=D0=
=E8print=A1=A2=BF=BD=B1=B4=A1=A2=D5=B3=CC=F9=B5=C8=B2=D9=D7=F7=A3=AC=D6=BB=
=D0=E8<BR>=D4=DA=B9=A5=BB=F7=B3=CC=D0=F2=D6=D0=BC=D3=C8=EB=D2=BB=B6=CE=B1=
=E0=C2=EB=B4=FA=C2=EB=BE=CD=BF=C9=D2=D4=C1=CB=A1=A3=D5=E2=D1=F9=D2=B2=B1=E3=
=D3=DA=BD=BB=C1=F7=A1=A3<BR><BR>=B5=AB=CF=D6=D4=DA=CD=F8=C2=E7=C9=CF=C1=F7=
=D0=D0=B5=C4=B6=BC=CA=C7C=B1=E0=D0=B4=B5=C4ShellCode=A3=AC=B2=BB=B9=FD=D7=
=EE=D6=D5=D2=AA=C9=FA=B3=C9=B5=C4=CA=C7ShellCode=B4=FA=C2=EB=A3=AC=D5=E2=BE=
=CD=C9=E6<BR>=BC=B0=B5=BD=CC=E1=C8=A1C=C9=FA=B3=C9=B5=C4=BB=E3=B1=E0=B4=FA=
=C2=EB=B5=C4=CE=CA=CC=E2=A1=A3=B5=AB=D4=DAC=D6=D0=D3=C9=D3=DA=B1=E0=D2=EB=
=C6=F7=BB=E1=D4=DA=BA=AF=CA=FD=B5=C4=BF=AA=CA=BC=BA=CD=BD=E1=CA=F8=C9=FA=B3=
=C9=D2=BB=D0=A9=B8=BD=BC=D3<BR>=B4=FA=C2=EB=A3=AC=B6=F8=D5=E2=D0=A9=B4=FA=
=C2=EB=CE=B4=B1=D8=CA=C7=CE=D2=C3=C7=D0=E8=D2=AA=B5=C4=A3=AC=BB=B9=D3=D0=D2=
=BB=B8=F6=CE=CA=CC=E2=BE=CD=CA=C7=D2=AA=CC=E1=C8=A1=B4=FA=C2=EB=B5=C4=BD=E1=
=CA=F8=D4=DAC=D6=D0=C3=BB=D3=D0=D6=B1=BD=D3=B5=C4<BR>=B2=D9=D7=F7=B7=FB=BB=
=F1=C8=A1=A1=A3=D5=E2=D0=A9=CA=B5=BC=CA=C9=CF=D2=B2=B6=BC=B2=BB=CA=C7=BA=DC=
=C4=D1=A3=AC=D6=BB=D2=AA=D4=DA=BA=AF=CA=FD=B5=C4=BF=AA=CA=BC=BA=CD=BD=E1=CA=
=F8=BC=D3=C8=EB=CC=D8=D5=F7=D7=D6=B7=FB=B4=AE=D3=C3C=BF=E2=BA=AF=CA=FD<BR=
>memcmp=CB=D1=CB=F7=BC=B4=BF=C9=B6=A8=CE=BB=A1=A3=B6=D4ShellCode=B5=C4=B1=
=E0=C2=EB=BF=C9=D0=B4=D2=BB=B6=CE=B3=CC=D0=F2=BD=F8=D0=D0=A3=AC=B1=C8=C8=E7=
XOR=B7=A8=B5=C4=A1=A3=D7=EE=BA=F3=D0=B4=D2=BB=B6=CE<BR>=BA=AF=CA=FD=BD=AB=
=B1=E0=C2=EB=BA=F3=B5=C4ShellCode=B4=F2=D3=A1=B3=F6=C0=B4=A3=AC=B8=B4=D6=C6=
=A1=A2=D5=B3=CC=F9=BE=CD=BF=C9=D2=D4=D3=C3=D4=DA=B9=A5=BB=F7=B3=CC=D0=F2=C0=
=EF=C3=E6=C1=CB=A1=A3<BR><BR>=D3=C3C=B1=E0=D0=B4=B5=C4=D6=D0=D0=C4=CB=BC=CF=
=EB=BE=CD=CA=C7=CE=D2=C3=C7=D3=C3C=D3=EF=D1=D4=D0=B4=B4=FA=C2=EB=A3=AC=C8=
=C3=B1=E0=D2=EB=C6=F7=CE=AA=CE=D2=C3=C7=C9=FA=B3=C9=B6=FE=BD=F8=D6=C6=B4=FA=
=C2=EB=A3=AC=C8=BB=BA=F3=D4=DA=D4=CB=D0=D0=CA=B1<BR>=B1=E0=C2=EB=A1=A2=B4=
=F2=D3=A1=A3=AC=D5=E2=D1=F9=B9=A4=D7=F7=BE=CD=CD=EA=B3=C9=C1=CB=A1=A3<BR>=
<BR>=D4=DA=CD=F8=C9=CF=D5=D2=B5=BD=C1=CB=D2=BB=B8=F6=D3=C3C=B1=E0=D0=B4Sh=
ellCode=B5=C4=C0=FD=D7=D3=A3=AC=D3=DA=CA=C7=C7=D7=D7=D4=B5=F7=CA=D4=C1=CB=
=D2=BB=B1=E9=A3=AC=B7=A2=CF=D6=C1=CB=D2=BB=D0=A9=CE=CA=CC=E2=BA=F3=D0=DE=B8=
=C4<BR>=B2=A2=BC=D3=C8=EB=D2=BB=D0=A9=D7=D4=BC=BA=B5=C4=B4=FA=C2=EB=A3=AC=
=B2=E2=CA=D4=CD=A8=B9=FD=A1=A3<BR><BR>=C6=E4=D6=D0=B5=C4=D2=BB=D0=A9=CE=CA=
=CC=E2=D3=D0=A3=BA<BR><BR>1.KERNEL=BB=F9=B5=D8=D6=B7=B5=C4=B6=A8=CE=BB=BA=
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -