ok so what your talking about is like when you telnet into a system and get a banner you use a buffer overflow to access the command shell
Printable View
ok so what your talking about is like when you telnet into a system and get a banner you use a buffer overflow to access the command shell
Searched the web for "remotely execute a command shell". Results 1 - 10 of about 28,200. Search took 0.22 seconds
"us people" use google...and take the 0.22 seconds it takes to look basic answers up ourselves...
you have a specific question...you may get an answer...but you may want to do a bit of attitudinal adjusting...we don't owe you an answer...
if you spent even a moment looking...you'd find a s*load of lame kiddie sites and tuts that'll tell you what you want to know...hey ...you got 28000 to choose from...go to it
i dont really understand the whole banner and tcp packet flag thing
That's one way you could do it I suppose. You access a service via telnet, say SMTP (sorry for picking on sendmail/qmail guys). When interecting with the service you feed a command a series of values that overflows the buffer (memory allocated to some vulnerable function) and seg faults the process. If you feed in the "right" values when overflowing the buffer, usually Assembly commands, you can overwrite a section of memory with evil code and this evil code is executed spawning a remote shell.Quote:
ok so what your talking about is like when you telnet into a system and get a banner you use a buffer overflow to access the command shell.
And then then the sys admin notices this and kicks your ass ;).
Smirc PM me with the basics of accessing a remote command shell via telnet etc...
No.Quote:
Smirc PM me with the basics of accessing a remote command shell via telnet etc...
come on smirc don't beat round the bush tell the poor guy exactly how u feel ;)Quote:
No.
v_Ln
NetwrkBurn --
I think you may have got of very lightly there! It could have got /really/ warm in this thread.
lolololololol - nice man, very nice. ;)Quote:
No.
OK, Ok, i think that questions like "how to exec a rmt shell" are a bit far off. Witha simple Google search you can get propably 5-6 *good* results that a newB can understand. Which means that
"Searched the web for "remotely execute a command shell". Results 1 - 10 of about 28,200. Search took 0.22 seconds"
is somewhat funny and irritating. Hey, dont go around saying those things about Google.
NetwrkBurn --
A tip for when you sign up under a different username - avoid the over-use of the word 'like'. It makes you sound 15 (even if you're 16 or 17). Oh and btw - I don't think neophyte was the term that anyone had in mind... ;)