##shellcode64 A tiny shellcode extractor which helps in the process of extracting shellcode from 64-bit PE binaries (.exe files). The shellcode extractor extracts to pure binary (.bin files) and to the pcileech custom format (.ksh files).
Download the most recent binary distrubution for Windows x64 here or check out the source code and compile it yourself in Visual Studio.
######Syntax:
shellcode64 [<options>] <PE_file> [<printf_format_string_for_ksh>]
The <printf_format_string_for_ksh> supports \\n but not \\t and \\\\
Available options: -<options> (in one single argument):
o = overwrite existing .bin and .ksh files.
b = show binary output if shorter than 8kB.
i = ignore data directories which may invalidate the extracted shellcode.