πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
[#Tooling βοΈ] 𧡠(1/6) A thread of integrating #shellcode #fluctuation technique into DInjector: https://t.co/4VLQkuXO4q
Main credits to @mariuszbit, @_RastaMouse and @ShitSecure for their great tools and blogs which I heavily relied on here.
#redteam #maldev
π https://github.com/snovvcrash/DInjector/blob/0ed4182035f9dcd15cf987519e5f1320f669e962/DInjector/Modules/CurrentThread.cs#L233-L458
π₯ [ tweet ]
[#Tooling βοΈ] 𧡠(1/6) A thread of integrating #shellcode #fluctuation technique into DInjector: https://t.co/4VLQkuXO4q
Main credits to @mariuszbit, @_RastaMouse and @ShitSecure for their great tools and blogs which I heavily relied on here.
#redteam #maldev
π https://github.com/snovvcrash/DInjector/blob/0ed4182035f9dcd15cf987519e5f1320f669e962/DInjector/Modules/CurrentThread.cs#L233-L458
π₯ [ tweet ]
π₯3
πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
[#Tooling βοΈ] Added @jor6PSβs DrawNmap project for visualizing Nmap reports to #DivideAndScan. Dunno whether itβs really needed there, but I was just bored I guess. DrawNmap is cool anyway, take a look: https://t.co/6jW8grFb9F
#nmap #portscan
π https://github.com/jor6PS/DrawNmap
π₯ [ tweet ]
[#Tooling βοΈ] Added @jor6PSβs DrawNmap project for visualizing Nmap reports to #DivideAndScan. Dunno whether itβs really needed there, but I was just bored I guess. DrawNmap is cool anyway, take a look: https://t.co/6jW8grFb9F
#nmap #portscan
π https://github.com/jor6PS/DrawNmap
π₯ [ tweet ]
π3
πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
[#Tooling βοΈ] Inspired by @s4ntiago_p and NanoDump Iβve fully switched to API Hashing for Windows API and syscalls resolution in DInjector. A quick re-hashing can be performed before compilation with a Python script.
π₯ [ tweet ]
[#Tooling βοΈ] Inspired by @s4ntiago_p and NanoDump Iβve fully switched to API Hashing for Windows API and syscalls resolution in DInjector. A quick re-hashing can be performed before compilation with a Python script.
π₯ [ tweet ]
πΉ [ snovvcrash, snπ₯Άvvcrπ₯sh ]
[#Tooling βοΈ] Updated my SharpBin2SelfInject gist with the recent H/Invoke technique by @dr4k0nia for a stealthier GetModuleHandle / GetProcAddress resolution and invocation π₯·π»
https://t.co/JZd3YCXfPh
#maldev #dinvoke #hinvoke
π https://gist.github.com/snovvcrash/30bd25b1a5a18d8bb7ce3bb8dc2bae37
π₯ [ tweet ]
[#Tooling βοΈ] Updated my SharpBin2SelfInject gist with the recent H/Invoke technique by @dr4k0nia for a stealthier GetModuleHandle / GetProcAddress resolution and invocation π₯·π»
https://t.co/JZd3YCXfPh
#maldev #dinvoke #hinvoke
π https://gist.github.com/snovvcrash/30bd25b1a5a18d8bb7ce3bb8dc2bae37
π₯ [ tweet ]