Shellcode Loader

Abusing callback to run shellcode.

Overview

Eksekusi shellcode dengan EnumDirTree.

BOOL IMAGEAPI EnumDirTree (HANDLE hProcess, PCSTR RootPath, PCSTR InputPathName, PSTR OutputPathBuffer, PENUMDIRTREE_CALLBACK cb, PVOID data);

BOOL IMAGEAPI EnumDirTreeW (HANDLE hProcess, PCWSTR RootPath, PCWSTR InputPathName, PWSTR OutputPathBuffer, PENUMDIRTREE_CALLBACKW cb, PVOID data);

BOOL IMAGEAPI SymInitialize (HANDLE hProcess, PCSTR UserSearchPath, BOOL fInvadeProcess);

Reference

MSDN EnumDirTree
MSDN EnumDirTreeW
MSDN SymInitialize

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Shellcode Loader

Overview

Reference

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

Shellcode Loader

Overview

Reference