Category: Exploitation

DLL Hijacking Discovery Tool

Spartacus v1.2 releases: DLL Hijacking Discovery Tool

Spartacus DLL Hijacking Spartacus is utilising the SysInternals Process Monitor and is parsing raw PML log files. You can leave ProcMon running for hours and discover 2nd and 3rd level (ie an app that loads another...

Payload Loader

APCLdr: Payload Loader With Evasion Features

APCLdr: Payload Loader With Evasion Features Features: no crt functions imported indirect syscalls using HellHall api hashing using the CRC32 hashing algorithm payload encryption using rc4 – payload is saved in .rsrc Payload injection using APC...

encrypt shellcode

Shoggoth: Asmjit Based Polymorphic Encryptor

Shoggoth Shoggoth is an open-source project based on C++ and asmjit library used to encrypt given shellcode, PE, and COFF files polymorphically. Shoggoth will generate an output file that stores the payload and its...

execute indirect syscalls

HWSyscalls: new method to execute indirect syscalls

HWSyscalls HWSyscalls is a new method to execute indirect syscalls using 3 main components: Hardware breakpoints and Vectored Exception Handler to control the flow of execution. HalosGate is used to find syscall numbers and...