OSCE-prep

Exploits made practicing for OSCE

eip_integard.py

EIP overwrite for Integard | Writeup - https://purpl3f0xsec.tech/2019/08/04/osce-prep-integard.html

execve-stack.nasm

Assembly for spawning a shell using the stack

execve.nasm

Assembly for spawning a shell using registers

gmon_fuzz.py

Fuzzer for Vulnserver GMON

gmon_seh.py

SEH overwrite for Vulnserver GMON | Writeup - https://purpl3f0xsec.tech/2019/06/21/osce-prep-2.html

gmon_seh_egghunter_exploit.py

SEH overwrite with egghunter for Vulnserver GMON | Writeup - https://purpl3f0xsec.tech/2019/06/18/osce-prep-1.html

gter.py

Limited-space exploit for Vulnserver GTER

http.py

HTTP BooFuzz template created with BooGen, and used for HP NNM server

integard.py

SEH overwrite for Integard | Writeup - https://purpl3f0xsec.tech/2019/08/04/osce-prep-integard.html

kstet.py

Socket-reuse exploit for Vulnserver KSTET | Writeup - https://purpl3f0xsec.tech/2019/09/04/Vulnserver-KSTET-Socket-Reuse.html

lter.py

Alphanumeric-restricted exploit for Vulnserver LTER, using "carved" shellcode | Writeup - https://purpl3f0xsec.tech/2019/09/10/Vulnserver-LTER.html

msf_lter.py

Alphanumeric-restricted exploit for Vulnserver LTER, using MSFvenom-generated shellcode | Writeup - https://purpl3f0xsec.tech/2019/09/10/Vulnserver-LTER.html

nnm.py

Alphanumeric-restricted exploit for HP NNM server | Writeup - https://purpl3f0xsec.tech/2019/07/23/hpp-nnm.html

xor-decoder-marker.nasm

XOR decoder for shellcode, using a "marker" to end the loop

xor-decoder.nasm

XOR decoder for shellcode, using a loop counter to end the loop

xor_encode.py

Python XOR encoder for shellcode

funeraload / OSCE-prep-1