[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

re: Tiny Windows 2000 Reverse Connect



----- Original Message -----
From: "H D Moore" <sflist@xxxxxxxxxxxxxxxxxx>
Sent: Monday, October 06, 2003 10:11 PM

I managed to get a null-free version right around 200 bytes, but any really small XOR encoder will work as well. This technique, dubbed 'Vampiric Imports' is implemented in the following code:
- http://metasploit.com/sc/win2000_vampiric_connector.asm

Very nice. I reckon you could make it even smaller quite easily though; surely in most cases, any program that you send an overflow to down a socket will already have called WSAStartup for you, and you could just omit that part of the code ?

 cheers,
     DaveK

_________________________________________________________________
Hotmail messages direct to your mobile phone http://www.msn.co.uk/msnmobile