This repository has been archived, I don't want to use C++ anymore, please follow my rust repository: rust-shellcode
cpp-shellcode
is A repository of Windows Shellcode runners. The applications load and execute Shellcode using various API calls or techniques.
😈 THANKS @go-shellcode
The available Shellcode runners include:
This application leverages the Windows CreateFiber function from the Kernel32.dll
to execute shellcode within this application's process. This is usefull when you want to avoid remote process injection and want to avoid calling CreateThread
.
This application leverages the Windows CreateRemoteThread function from Kernel32.dll to execute shellocde in a remote process. The application requires that the target process to inject into is already running. The program default injecting Explorer.exe
This application leverages the Windows CreateThread function from Kernel32.dll to execute shellcode within this application's process. This is usefull when you want to avoid remote process injection.
This application leverages the Windows EtwpCreateEtwThread function from ntdll.dll to execute shellcode within this application's process. Original work by TheWover. This is usefull when you want to avoid remote process injection.
This application uses the undocumented NtQueueApcThreadEx to create a "Special User APC" in the current thread of the current process to execute shellcode. Because the shellcode is loaded and executed in the current process, it is "local". This same technique can be used for a remote process. NOTE: This will only work on Windows 7 or later. Reference APC Series: User APC API.