KaynLdr is a Reflective Loader written in C / ASM. It uses direct syscalls to allocate virtual memory as RW and changes it to RX. It erases the DOS and NT Headers to make it look less suspicious in memory.
- Uses direct syscall (TartarusGate by trickster0)
- Erases the DOS and NT header
- only the .text section is going to be RX
- Add Hooks
- Rewrite most functions in assembly
- x86 support
- Add cna file for Cobalt Strike User Defined Reflective DLL Loader
