GitHub - SolomonSklash/SleepyCrypt: A shellcode function to encrypt a running pr...
source link: https://github.com/SolomonSklash/SleepyCrypt
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
SleepyCrypt
A shellcode function to encrypt a running process image in memory when sleeping.
This is the companion code for my blog post here.
Build
Just run build.sh to compile the C code, extract the .text section as shellcode, and compile it into a test binary called sleep.exe. This will require MinGW (x86_64-w64-mingw32-gcc, x86_64-w64-mingw32-ld, and objcopy) on Linux.
Recommend
-
92
Sickle - A tool I have found incredibly useful whenever creating custom shellcode.
-
68
Sickle:推荐一款优质ShellCode开发工具
-
79
README.md Kernel Shellcode Loader Build Building the Driver Open a WDK build prompt Run ez.cmd to build and sign the driver and build the user-space...
-
59
今天给大家介绍的是一款名叫sRDI的注入工具,它可以基于Shellcode实现反射型DLL注入,并能够将DLL转换成独立的Shellcode。 工具介绍
-
29
前言 在这篇文章中,我们将简单介绍如何在通过TCP通信的位置无关代码(PIC)中实现数据加密。 我将以Linux下的同步Shell作为演示样例,因此我建议大家在阅读本文之前先阅读下面这几篇关于Shellcode的细节文章。...
-
13
charlotte c++ fully undetected shellcode launcher ;) releasing this to celebrate the birth of my newborn description c++ shellcode launcher, fully undetected 0/26 as of 13th May 2021. dynamic invo...
-
6
How To PGP Encrypt An S3 File Using AWS Lambda Running Docker Images
-
17
摧日:CuiRi 红队专用免杀木马生成工具 0x01 简介: ____ __ __ _____ ______ _____ / ___) ) ) ( ( (_ _) ( __ \ (_ _) / / ( ( ) ) | | ) (__) ) | | ( (...
-
8
ZheTian ZheTian Powerful remote load and execute ShellCode tool,免杀shellcode加载框架 -u string:从远程服务器加载base64混淆后的字节码。 -r string:从本地...
-
6
Using a Different System? Let...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK