Shellcode Tools

This page links to a couple of tools which you might find useful when working with binaries, or shellcode.

Exploitation Tools

Already in the exploitation section we covered two tools:

• cmd-overflow
  • For exploiting binaries which copy command line arguments into fixed buffers.
• env-overflow
  • For exploiting binaries which copy environmental variables into fixed buffers.

Disassembling

Objdump

Objdump is a great tool for converting a binary to a dissassembled output:

objdump -d /bin/ls
/bin/ls:     file format elf32-i386

Disassembly of section .init:

0804945c <.init>:
 804945c:       55                      push   %ebp
 804945d:       89 e5                   mov    %esp,%ebp
 804945f:       83 ec 08                sub    $0x8,%esp
 8049462:       e8 0d 06 00 00          call   0x8049a74
 8049467:       e8 74 06 00 00          call   0x8049ae0
 804946c:       e8 2f ce 00 00          call   0x80562a0
 8049471:       c9                      leave  
 8049472:       c3                      ret    

dasm

Dasm is a small Perl script which will utilize the objdump program to dissassemble binaries, giving a cross-referenced dump of an unknown binary along with string references.

Highly recommended if you're interested in working with an unkown binary target.

• dasm.pl