{"id":17383502,"url":"https://github.com/sisoma2/shellcodeloader","last_synced_at":"2025-04-15T09:53:07.831Z","repository":{"id":257404930,"uuid":"128264730","full_name":"sisoma2/ShellcodeLoader","owner":"sisoma2","description":"Small tool to load shellcodes or PEs to analyze them","archived":false,"fork":false,"pushed_at":"2018-05-16T16:45:02.000Z","size":21,"stargazers_count":81,"open_issues_count":0,"forks_count":18,"subscribers_count":6,"default_branch":"master","last_synced_at":"2025-03-28T19:07:27.350Z","etag":null,"topics":["breakpoint","malware","malware-analysis","shellcode","visual-studio","windows"],"latest_commit_sha":null,"homepage":null,"language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sisoma2.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-04-05T21:10:54.000Z","updated_at":"2024-12-20T05:44:35.000Z","dependencies_parsed_at":"2024-09-16T14:47:42.318Z","dependency_job_id":null,"html_url":"https://github.com/sisoma2/ShellcodeLoader","commit_stats":null,"previous_names":["sisoma2/shellcodeloader"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sisoma2%2FShellcodeLoader","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sisoma2%2FShellcodeLoader/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sisoma2%2FShellcodeLoader/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sisoma2%2FShellcodeLoader/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sisoma2","download_url":"https://codeload.github.com/sisoma2/ShellcodeLoader/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249048713,"owners_count":21204306,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["breakpoint","malware","malware-analysis","shellcode","visual-studio","windows"],"created_at":"2024-10-16T07:42:58.780Z","updated_at":"2025-04-15T09:53:07.797Z","avatar_url":"https://github.com/sisoma2.png","language":"C++","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ShellcodeLoader\n\nShellcodeLoader has been built with the purpose to quickly debug a shellcode extracted in malware analysis in a context of an executable.\nWhat ShelcodeLoader does is read a bynary file from disk to memory and jump to the base or an especified entry point to execute the file.\nIt autodetects if it's being debugged and asks the user if he/she wants to set a breakpoint before the execution of the shellcode.\nWorks in x86 and x64 systems.\n\n## Releases\n\nGo to the Releases tab and download the compiled executables.\n\n## Usage\n\nThe file is required. The other arguments are optional.\n```\nShellcodeLoader.exe [-e --entrypoint ENTRYPOINT] [-a --address ADDRESS] [-r --run] [-b --break] FILE\n```\n\nLoads the file and executes the code at a specified offset\n```\nShellcodeLoader.exe -e 1000 shellcodex86.bin\n```\n\nReads the file and tries to allocate memory at the specified address and copy the shellcode to this region and execute it\n```\nShellcodeLoader.exe -a 30000 shellcodex86.bin\n```\n\nRuns the shellcode without stopping or breaking. __Warning:__ The shellcode will be executed in your machine.\n```\nShellcodeLoader.exe -r shellcodex86.bin\n```\n\nTries to copy the shellcode at the specified region and sets a breakpoint before jumping to the specified entrypoint\n```\nShellcodeLoader.exe -a 30000 -e 1000 -b shellcodex86.bin\n```\n\n## Building \n__Requirements__\n - Download and install Microsoft Visual C++ Build Tools or Visual Studio \n\n__Build Steps__\n - Clone the repo and navigate to the directory\n - Open the SLN file to open the project to Visual Studio\n - Select the platform in which you will be compiling the binary (x32 or x64)\n - Go to Compile-\u003eCompile Solution to generate the EXE file\n \n## Shellcode Samples \n\nThe files shellcodex86.bin and shellcodex64.bin are shellcodes compiled with NASM that execute a calc.exe via WinExec Windows API for the purpose to test the software.\n\n## Feedback\n\nAny questions, comments or requests you can find me on twitter: [@sisoma2](https://twitter.com/sisoma2)\nPull requests welcome! \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsisoma2%2Fshellcodeloader","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsisoma2%2Fshellcodeloader","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsisoma2%2Fshellcodeloader/lists"}