File tree Expand file tree Collapse file tree 1 file changed +47
-0
lines changed
Expand file tree Collapse file tree 1 file changed +47
-0
lines changed Original file line number Diff line number Diff line change 1+ # shecodject (Shellcode inject)
2+ shecodject is a autoscript for shellcode injection by Python3 programing
3+
4+ shecoject是一個由python3編寫的工具,可將客製metasploit生成的raw檔直接使用pyinstaller封裝或是您也可使用本工具生成普通的raw檔再進行封裝。
5+
6+ 使用ctypes模塊將shellcode注入到ram中
7+
8+ persistence的方法為利用python3的winreg模塊於註冊表中寫入開機執行本程序並自我複製到使用者客製的路徑
9+
10+ ![ image] ( https://i.imgur.com/Xa5FpYu.png )
11+
12+ 且本工具亦提供shellcode混淆模塊將普通的reverse_tcp混淆(摘取自kgretzky作者)
13+ # Basic Flow
14+ * Example 1
15+ * msfvenom 產生raw檔
16+ * scc 引入raw檔
17+ * exe 模塊封裝
18+ * msf 模塊監聽
19+ * Example 2
20+ * mpr 模塊產生普通raw檔
21+ * exe 模塊封裝
22+ * msf 模塊監聽
23+ * Example 3
24+ * mpr 模塊產生普通reverse_tcp的raw檔
25+ * obf 模塊混淆
26+ * exe 模塊封裝
27+ * msf 模塊監聽
28+
29+ # Requirements
30+ python2 (obf module)
31+
32+ python3
33+
34+ # Installation
35+ ```
36+ $ git clone https://github.com/curtis992250/shecodject.git
37+ $ python3 setup.py
38+ ```
39+ # Usage
40+ ```
41+ $ python3 shecodeject.py
42+ ```
43+ # Reference
44+ https://github.com/curtis992250/shellcodeinject_regwrite_persistence/blob/master/reg_shellcode.py
45+ https://github.com/Mr-Un1k0d3r/DKMC
46+ https://www.youtube.com/watch?v=rjKEoBfdboo
47+ https://www.youtube.com/watch?v=w4BuXu344mU&t=638s
You can’t perform that action at this time.
0 commit comments