c-shellcode
MSFvenom:- Raw2Shellcode and Remove Garbage
· β˜• 1 min read · 🐱 thik
αž™αž›αŸ‹αžŠαžΉαž„αž’αŸ†αž–αžΈαž€αžΆαžšαž”αŸ†αž”αŸ’αž›αŸ‚αž„αž―αž€αžŸαžΆαžš Raw αž‘αŸ…αž‡αžΆ Shellcode αž“αž·αž„αžŠαž€αž…αŸ†αž“αž½αž“αž˜αž·αž“αž”αžΆαž“αž€αžΆαžšαž…αŸ„αž›
MSFvenom:- Raw2Shellcode and Remove Garbage
Encrypting Shellcode with XOR In C
· β˜• 1 min read · 🐱 thik
αž€αžΌαžŠαž“αžΈαž™αž€αž˜αŸ’αž˜ Shellcode αž‡αžΆαž˜αž½αž™ XOR αž€αŸ’αž“αž»αž„αž—αžΆαžŸαžΆαžš C
Encrypting Shellcode with XOR In C
Evading AV/EDR with Curl Command
· β˜• 2 min read · 🐱 thik
αžœαž·αž’αžΈαžŸαžΆαžŸαŸ’αžαŸ’αžš Evading AV/EDR αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹αž–αžΆαž€αŸ’αž™αž”αž‰αŸ’αž‡αžΆ Curl
Evading AV/EDR with Curl Command
Evading AV/EDR with Junk Bytes
· β˜• 1 min read · 🐱 thik
αžœαž·αž’αžΈαžŸαžΆαžŸαŸ’αžαŸ’αžš Evading AV/EDR αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹ Junk Bytes
Evading AV/EDR with Junk Bytes
Process Injection - Bypass AV/EDR with XOR - 0x01
· β˜• 3 min read · 🐱 thik
αž…αžΆαž€αŸ‹αž”αž‰αŸ’αž‡αžΌαž› Shellcode αž“αž·αž„ Bypass AV/EDR αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹ XOR
Process Injection - Bypass AV/EDR with XOR - 0x01
Process Injection without Write/Execute Permission
· β˜• 1 min read · 🐱 thik
αž…αžΆαž€αŸ‹αž”αž‰αŸ’αž‡αžΌαž› Shellcode αž€αŸ’αž“αž»αž„ Process αžŠαŸ„αž™αž‚αŸ’αž˜αžΆαž“ Write/Exec Allocation
Process Injection without Write/Execute Permission
Process Injection - Self Injection Method
· β˜• 1 min read · 🐱 thik
αž…αžΆαž€αŸ‹αž”αž‰αŸ’αž‡αžΌαž› Shellcode αž€αŸ’αž“αž»αž„ Process αžŠαŸ„αž™αž”αŸ’αžšαžΎαžœαž·αž’αžΈαžŸαžΆαžŸαŸ’αžαŸ’αžš Self Injection
Process Injection - Self Injection Method
1 Byte Changed Evading Antivirus
· β˜• 1 min read · 🐱 thik
Evading Antivirus αžŠαŸ„αž™αž”αŸ’αžšαžΎαž”αŸ’αžšαžΆαžŸαŸ‹αž”αž…αŸ’αž…αŸαž€αž‘αŸαžŸαž”αŸ’αžŠαžΌαžšαžαž˜αŸ’αž›αŸƒαž›αŸαžαž‚αŸ„αž›αž–αžΈαžš
1 Byte Changed Evading Antivirus