Spoofi
A tool to inject Shellcode into the remote process.
Features:
- Parent Process Spoofing
- Injection through APC
- Dynamic API resolution for bypassing static analysis
- Low detection rate (on VT AV engines)
How to Use:
- Put your shellcode in the shellcode variable
- Put your desired process full path in TargetProcess variable (Default value: iexplore.exe full path)
- Put your desired parent process in ParentProcess variable (Default value: "explorer.exe").
- Compile the Code
- Execute it by CMD or PowerShell
