Shellcode Loader

Executing shellcode as a thread.

Overview

Eksekusi shellcode dengan RtlCreateUserThread dan tunggu hingga eksekusi tuntas dengan WaitForSingleObject.

RtlCreateUserThread adalah fungsi internal dan bersifat low-level.

NTSTATUS RtlCreateUserThread (HANDLE ProcessHandle, PSECURITY_DESCRIPTOR SecurityDescriptor, BOOLEAN CreateSuspended, ULONG StackZeroBits, PULONG StackReserved, PULONG StackCommit, PVOID StartAddress, PVOID StartParameter, PHANDLE ThreadHandle, PCLIENT_ID ClientID);

DWORD WaitForSingleObject (HANDLE hHandle, DWORD dwMilliseconds);

Reference

NTInternals RtlCreateUserThread
MSDN WaitForSingleObject

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Shellcode Loader

Overview

Reference

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

Shellcode Loader

Overview

Reference