GitHub

hasherezade/pe_to_shellcode

The goal of this project is to provide a possibility to generate PE files that can be injected with minimal effort. It is inspired by Stephen Fewer's ReflectiveDLLInjection - but the difference is ...
Security Boulevard

Linux X86 Assembly – How To Test Custom Shellcode Using a C Payload Tester

In the last blog post in this series, we created a tool to make it easy to build our custom payloads and extract them. However, what if we want to test them before trying to use them? It seems like a ...
IEEE

Offensive Shellcode from Scratch: Get to grips with shellcode countermeasures and discover how to bypass them

Shellcoding is a technique that is executed by many red teams and used in penetration testing and real-world attacks. Books on shellcode can be complex, and writing shellcode is perceived as a kind of ...
Security Boulevard

Analyzing an Instance of Meterpreter’s Shellcode

In my previous post on detecting and investigating Meterpreter’s Migrate functionality, I went down a rabbit hole on the initial PowerShell attack spawned by and Excel macro. In that payload was a bit ...
Microsoft

Shellcode Analysis via MSEC Debugger Extensions

In a previous post we provided some background on the !exploitable Crash Analyzer which was released earlier this year. One of the things that we didn’t mention is that !exploitable is just one of the ...
Game Rant

Destiny 2: How to Get Polymorphic Shellcode

I've been playing video games almost my entire life, with a particular preference for RPGs, Strategy Games, and 3D Platformers. When I'm not writing or gaming, I usually work on my own game projects ...