Guest Kovalski Posted July 8, 2015 Report Posted July 8, 2015 The injection points are based on the execution flow of the executable.Dynamic shellcode injection mean that the start of the injected code does NOT occur in locations that are based on very strict rules, such as the "entry point of an executable" or at a "statically predictable location".Shellter will actually trace the execution flow of an application in userland and it will log those instructions and locations that are in the range of the executable where the injection will take place.Once the tracing has finished, Shellter will filter the execution flow based on the size of the code that is about to be injected and it will only consider the valid injection points based on various filtering parameters. Quote
Nytro Posted July 8, 2015 Report Posted July 8, 2015 Deci despre ce vrea sa fie acest videoclip? Dynamic shellcode injection? Nu am prins ideea. Quote
Guest Kovalski Posted July 8, 2015 Report Posted July 8, 2015 Ai explicatia inainte de videoclip, plus ca iti ia fix 7 minute sa te uiti la clip sa vezi despre ce este vorba in caz ca explicatia de mai sus nu este suficienta."ShellterShellter is a dynamic shellcode injection tool, and probably the first dynamic PE infector ever created.It can be used in order to inject shellcode into native Windows applications (currently 32-bit apps only).The shellcode can be something yours or something generated through a framework, such as Metasploit.Shellter takes advantage of the original structure of the PE file and doesn’t apply any modification such as changing memory access permissions in sections (unless the user wants), adding an extra section with RWE access,and whatever would look dodgy under an AV scan.Shellter uses a unique dynamic approach which is based on the execution flow of the target application." Quote
Nytro Posted July 8, 2015 Report Posted July 8, 2015 Am vazut si descrierea si video, doar ca nu am vazut ceva prea util legat de Shellter. Adica "Auto", exe si payload -> 1 minut. Restul videoclipului sunt alte lucruri, nu am vazut AV, nu am vazut scan... Quote
io.kent Posted July 8, 2015 Report Posted July 8, 2015 here: akayard! Shellter (Dynamic Shellcode Injection) :: Tools - ToolWar | Information Security (InfoSec) Tools Quote
sleed Posted July 8, 2015 Report Posted July 8, 2015 E un fel de mona combinat cu simple fuzz, facut in C# cred si iti cauta prin dll-uri. Cred ca asta e. Dar pentru unix ? Acolo stai linistit ca e mai greu sa faci ceva.. Quote
