Teaching Old Shellcode New Tricks

Cite

REcon

Pitts, Josh

Formal Metadata

Title

Teaching Old Shellcode New Tricks

Title of Series

REcon 2017 Brussels Hacking Conference

Part Number

Number of Parts

Author

Pitts, Josh

License

CC Attribution 4.0 International:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/32393 (DOI)

Publisher

REcon

Release Date

2017

Language

English

Production Place

Brüssel

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Metasploit x86 shellcode has been defeated by EMET and other techniques not only in exploit payloads but through using those payloads in non-exploit situations (e.g. binary payload generation, PowerShell deployment, etc..). This talk describes taking Metasploit payloads (minus Stephen Fewer’s hash API call), incorporating techniques to bypass Caller/EAF[+] checks (post ASLR/DEP bypass) and merging those techniques together with automation to make something better. There will be lots of fail and some win.