( vector | 2012. 01. 24., k – 19:30 )

Nálunk sem megy:

[[ vector@core2 : ~/tmp ]]$ uname -a
Linux core2.blackpanther.hu 2.6.38.2-desktop-1bP #1 SMP Tue Apr 12 17:40:36 BST 2011 i686 i686 i386 GNU/Linux
[[ vector@core2 : ~/tmp ]]$ ./mempodipper
===============================
= Mempodipper =
= by zx2c4 =
= Jan 21, 2012 =
===============================

[+] Ptracing su to find next instruction without reading binary.
[+] Creating ptrace pipe.
[+] Forking ptrace child.
[+] Waiting for ptraced child to give output on syscalls.
[+] Ptrace_traceme'ing process.
[+] Error message written. Single stepping to find address.
[+] Resolved call address to 0x80493d0.
[+] Opening socketpair.
[+] Waiting for transferred fd in parent.
[+] Executing child from child fork.
[+] Opening parent mem /proc/32087/mem in child.
[+] Sending fd 6 to parent.
[+] Received fd at 6.
[+] Assigning fd 6 to stderr.
[+] Calculating su padding.
[+] Seeking to offset 0x80493c2.
[+] Executing su with shellcode.
[[ vector@core2 : ~/tmp ]]$ wh
whatis whereis which which-python while who whoami
[[ vector@core2 : ~/tmp ]]$ who
who whoami
[[ vector@core2 : ~/tmp ]]$ whoami
vector
[[ vector@core2 : ~/tmp ]]$

[vector@no1 vector]$ uname -a
Linux no1.blackpanther.hu 2.6.30.4-security #1 SMP Tue Aug 18 11:11:09 CEST 2009 i686 Pentium(R) Dual-Core CPU E5200 @ 2.50GHz GNU/Linux
[vector@no1 vector]$
[vector@no1 vector]$ ./mempodipper
===============================
= Mempodipper =
= by zx2c4 =
= Jan 21, 2012 =
===============================

[+] Ptracing su to find next instruction without reading binary.
[+] Creating ptrace pipe.
[+] Forking ptrace child.
[+] Waiting for ptraced child to give output on syscalls.
[+] Ptrace_traceme'ing process.
[+] Error message written. Single stepping to find address.
[+] Resolved call address to 0x80492d0.
[+] Opening socketpair.
[+] Executing child from child fork.
[+] Waiting for transferred fd in parent.
[+] Opening parent mem /proc/22263/mem in child.
[+] Sending fd 6 to parent.
[+] Received fd at 6.
[+] Assigning fd 6 to stderr.
[+] Calculating su padding.
[+] Seeking to offset 0x80492c2.
[+] Executing su with shellcode.
[vector@no1 vector]$ whoami
vector
[vector@no1 vector]$

-------------------------------------------------------------------------------------------
Mit használok? Na, na, na? Hát blackPanther OS v11.1-et * www.blackpanther.hu