» English Shellcode - Whitepaper

[MaXe]

[In this paper, they challenge the assumption that shellcode must conform
to superficial and discernible representations. Specifically, they demonstrate
a technique for automatically producing English Shellcode, transforming
arbitrary shell-code into a representation that is superficially similar to
English prose. This was published on packetstormsecurity.org ]



This surely is a completely new topic to me.. Shellcode that consists of
english phrases as in you send a payload in f.ex. an english e-mail where One
of course has included a decoder and then it turns into a reverse tcp shell?



It totally blew my mind when I read about this, sounds like something from The Matrix doesn't it?

But it's not, it is very real and I believe that we in the future might see this
in massive use since it's harder to detect. The problem nowadays is that it
is not that easy to implement yet and there's buffer limits which is still why
shellcode has to be small and efficient.

The decoding part looks rather cool which you can see below:



It still blows my mind but at least I believe that it is possible to do.

Direct Link: http://packetstormsecurity.org/paper...s243-mason.pdf

References:
http://packetstormsecurity.org/filed...mason.pdf.html


All of the best,
MaXe

[Norph]

Woah :o
This sounds awesome. I must agree - mindblowing xD