Home page logo

metasploit logo Metasploit mailing list archives

Re: Mac 64-bit Shellcode
From: Ty Miller <tyronmiller () gmail com>
Date: Wed, 1 Jun 2011 18:08:34 +1000

Hey all,

Thanks for the responses.

Does metasm support macho64?

Otherwise I think i'll play with nasm/xxd a bit more, then probably stick to
developing macho64 payloads directly on mac.


On Wed, Jun 1, 2011 at 10:40 AM, HD Moore <hdm () metasploit com> wrote:

On 5/31/2011 5:11 PM, Ty Miller wrote:
Hey guys,

I am currently putting together some Mac 64-bit shellcode but am having
troubles extracting the shellcode on Linux. I can do it fine on Mac
using nasm and otool, which produces the expected small shellcode, but I
want to specifically do it from Linux as a central development location.

I'm developing on BT5. I can compile it as macho64 using nasm. objdump
doesn't recognise the macho64 format. I also used xxd and can see the
small amount of shellcode in amongst heaps of other junk, but I cant see
an easy way to automatically strip the shellcode from the xxd output.

You might try building a generic macho binary that reads a file and
executes in RWX memory, then just use nasm -f bin to build raw shellcode
blobs and send those to your target darwin box, along with your load



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]