sRDI
sRDI copied to clipboard
monoxgas
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
Attempting to convert a simple DLL to shellcode, but receiving the following error. Am I doing something incorrect? Note: DLL is 64bit ``` PS C:\Users\dev\Desktop\sRDI\PowerShell> Invoke-Shellcode -Shellcode (ConvertTo-Shellcode -File MessageBoxDLL.dll)...
System environment: win7 x64 I use loaddll to convert wow64\user32 DLL loading will fail here. I don't know why, if (alignedImageSize != AlignValueUp(lastSectionEnd, sysInfo.dwPageSize)) { //It will return here, win10...
this is my code dllmain.cpp ``` #include #include "template.h" void go(); BOOL APIENTRY DllMain( HMODULE hModule, DWORD ul_reason_for_call, LPVOID lpReserved ) { switch (ul_reason_for_call) { case DLL_PROCESS_ATTACH: go(); case DLL_THREAD_ATTACH:...
DLLs cannot use FindResource when converted into shellcode. Same code works when not loaded using sRDI. Issue seems to be the same as https://github.com/TheWover/donut/issues/70 where the PE stomping breaks the...
I am trying to use the SRDI_CLEARMEMORY flag, but I am having a couple of issues. First, if I try running the shellcode generated using the PIC code of `ShellcodeRDI.c`...
Hey, I'm using your library to load a test compiled DLL as shellcode. To load I'm using the Native loader. everything was compiled using v141 toolset in VS2017. The function...
Environment: Win10 1709 DLL: C:\Windows\SysWOW64\user32.dll 1. I firstly use command `python Python\ConvertToShellcode.py user32.dll` convert user32.dll to user32.bin. 2. Then I change the code in Native\Loader.cpp to call API MessageBoxA after...
Is it currently possible to execute by ordinal after load? This would be a pretty neat feature combined with Cobalt Strike/DanderSpiritz, etc. [UPDATE] Just hit me that both of those...
How to release a dll loaded by sRDI similar to MemoryFreeLibrary dll
