jimmy
Dec 29 2003, 04:45 AM
I once found here on the board a way to convert an exe into some text code.
So when I don't have upload acces to a box, I can echo the exe onto it
First it needed to be converted and than it could be converted back on the box into the exe with the right command.
Anyone remembers the post or knows how to do it ?
taimoor
Dec 29 2003, 12:32 PM
nice
coder
Dec 29 2003, 12:44 PM
Base64 - An encoding for binary data as described as a means of encoding email bodies in the IETF's MIME RFC. Base64 consists only of 64 encoding characters (A-Z, a-z, 0-9, +, /) that are a subset of US-ASCII.
jimmy
Dec 29 2003, 01:43 PM
how can I recompile/convert it back on the box than ? I believe it was something with debug, not sure though
aTahualPa
Dec 29 2003, 02:25 PM
mrBob
Dec 29 2003, 03:25 PM
hmm, yes, i remember that post
thought it was somewhere in a thread about an IE vulnerability
i'll do a little search
jimmy
Dec 29 2003, 03:37 PM
thx
I searched already but didn't find it.
@coder: with base64 I can't do a thing, cause as far as I see I can't convert it back on the box without the base64 there
coder
Dec 29 2003, 04:36 PM
I apologize for the misunderstanding ... I had not had my coffee yet
if you're talking about
http://www.governmentsecurity.org/forum/in...BF%BDentry15469 this? Using the Debug Utility?
jimmy
Dec 29 2003, 04:49 PM
It wasn't that one, but maybe it gives a similar method.
I want to convert the kill.exe so I can echo it to the command shell on a hacked box. than I need to convert it back to kill.exe. That way I can kill the zonealarm that's running on the system.
coder
Dec 29 2003, 07:09 PM
well, i think that debug can work! maybe you could convert your applications into ASM (assembly, 8086/8087/8088/ETC... ) then use the assemble function in debug.exe like so...
| CODE |
-a0100:0500
0100:0500 jmp 502; a 2-byte short jump
0100:0502 jmp near 505; a 3-byte near jump
0100:0505 jmp far 50a; a 5-byte far jump
|
ok, so i haven't been able to get any of my ASM code to work (although i have to admit i do not know ASM) -> in theory this should work
boshcash
Dec 30 2003, 10:21 AM
i will search debug.exe and how to use it to do that job ..
mrBob
Dec 31 2003, 05:44 PM
| QUOTE (boshcash @ Dec 30 2003, 10:21 AM) |
| i will search debug.exe and how to use it to do that job .. |
it's included with windows
i'll also google some and stuff
this looks pretty interesting
agamemnon
Jan 8 2004, 03:25 AM
why not email it? if you're unable to post attatchments you could just send the HEX...
-ed.
boshcash
Jan 19 2004, 09:10 PM
why dont u just convert it into vbs file by the exe2vbs program and then echo the vbs text there , then run it to write the exe .. does the AVs detect the vbs file as a malicous code running ? (dont try the HTTPGETFILE way , some AVs already detect that because it was put in an exploit before)
Hint in echoing : unechoable chars like > and < , put ^ before them ..
bakeel
Jan 21 2004, 08:06 AM
esorone
Jan 25 2004, 08:25 PM
| QUOTE (boshcash @ Jan 19 2004, 09:10 PM) |
Hint in echoing : unechoable chars like > and < , put ^ before them .. |
Thanks for this....i Didn't know that.
Life can be sooo simple
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
