Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Shellcode encoder used in IFRAME exploit.
From: Max Valdez <maxvalde () fis unam mx>
Date: Thu, 25 Nov 2004 09:35:30 -0600

On Wednesday 24 November 2004 2:44 pm, Berend-Jan Wever wrote:
Hi all,

I have been getting a lot of questions about the encoded shellcode I used
in InternetExploiter. That's why I've decided to release the source to my
encoder, so you can all use it in your personal version of my exploit.
(Remember that the origional code was released under GPL! I'm still hoping
I get to see the guy who wrote those MyDoom worms in court, he violated the
GPL and spread millions(?) of copies of my (modified) source).
I'm pretty sure the author didnt do that, and even if (s)he did, its not 
necesarily  illegal, you may havent read the license :-)

Linux garaged 2.6.9-ac9 #2 SMP Tue Nov 16 17:07:13 CST 2004 i686 Intel(R) 
Pentium(R) 4 CPU 2.80GHz GenuineIntel GNU/Linux
Version: 3.12
GS/S d- s: a-29 C++(+++) ULAHI+++ P+ L++>+++ E--- W++ N* o-- K- w++++ O- M-- 
V-- PS+ PE Y-- PGP++ t- 5- X+ R tv++ b+ DI+++ D- G++ e++ h+ r+ z**
gpg-key: http://garaged.homeip.net/gpg-key.txt

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]