Win32 One-Way Shellcode presented at BlackHatAsia 2003

by S.k. Chong,

Summary : The presentation will describe the inner workings of reusable Win32 shellcodes. It will starts with explanation on fundamental techniques to make the shellcode re-locatable and service pack independent. It also will cover processes involved in constructing and testing shellcode which are usually left out in most buffer overflow tutorial. A few simple but handy tools will be introduced in the process. Then, the limitations of existing shellcodes will be discussed. It will leads to the development of one-way shellcode that will overcome those limitations. The talk will also describe a technique to upload/download file in command line. Throughout the presentation, various real exploits using different shellcode will be demonstrated.