Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Shellcode doesn't work with the most common process injection technique #7

Open
b1scoito opened this issue May 5, 2022 · 0 comments
Open

Shellcode doesn't work with the most common process injection technique #7

b1scoito opened this issue May 5, 2022 · 0 comments
Assignees
@MEhrn00
Labels
v0.2.0/rewrite v0.2.0

Comments

@b1scoito
Copy link

b1scoito commented May 5, 2022
edited
Loading

Hello, I tried injecting the generated shellcode from mythic with the injector present on the pe2shc project which uses the most common routine to inject a shellcode on a remote process and it doesn't work, it simply does absolutely nothing when injected. I find it really intriguing is that you create the shellcode with donut but donut as of right now apparently doesn't support binaries with no relocation data, same with pe2shc. I also tried creating the shellcode myself from the Windows binary (which works perfectly) and it won't work out because it doesn't have relocation data.
@b1scoito b1scoito changed the title Question about the shellcode Shellcode doesn't work with the most common process injection technique May 5, 2022
@MEhrn00 MEhrn00 self-assigned this Feb 18, 2024
@MEhrn00 MEhrn00 added the v0.2.0/rewrite v0.2.0 label Feb 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MEhrn00 MEhrn00

Labels
v0.2.0/rewrite v0.2.0
Projects
Thanatos v0.2.0/rewrite
Status: Todo
Milestone
No milestone
Development

When branches are created from issues, their pull requests are automatically linked.

rewrite MythicAgents/thanatos
2 participants
@MEhrn00 @b1scoito