dledda-r7
|
b85ceb0c36
|
fix(injection): fix arch support logic
|
2024-10-30 13:28:10 -05:00 |
|
dledda-r7
|
7d4349047f
|
fix(injection): fix arch support logic
|
2024-10-30 12:15:11 -04:00 |
|
dledda-r7
|
f34bb48b29
|
fix(injection): fix arch support logic
|
2024-10-30 12:15:10 -04:00 |
|
dledda-r7
|
8e533ec9fa
|
fix(injection): fix msvc compilation error
|
2024-10-30 12:15:10 -04:00 |
|
dledda-r7
|
a7485082ca
|
fix(injection): review changes
|
2024-10-30 12:15:10 -04:00 |
|
dledda-r7
|
ff182d10c4
|
fix(injection): review changes
|
2024-10-30 12:15:09 -04:00 |
|
dledda-r7
|
1b65a58ee7
|
fix(injection): review changes
|
2024-10-30 12:15:09 -04:00 |
|
dledda-r7
|
00d1a7218a
|
fix(injection): review changes
|
2024-10-30 12:15:09 -04:00 |
|
dledda-r7
|
1ebf2acbc2
|
fix(injection): review changes
|
2024-10-30 12:15:08 -04:00 |
|
dledda-r7
|
ae96c17e3d
|
fix(injection): review changes
|
2024-10-30 12:15:08 -04:00 |
|
dledda-r7
|
3fff5a09ff
|
docs(shellcode): add reference to poolparty stub
|
2024-10-30 12:15:08 -04:00 |
|
dledda-r7
|
37c61a2cb5
|
fix(injection): fix mingw compilation error
|
2024-10-30 12:15:07 -04:00 |
|
dledda-r7
|
cc408de7a6
|
feat(injection): improved system check to ensure poolparty is supported, removed unused variants, better code to execute variants
|
2024-10-30 12:15:07 -04:00 |
|
dledda-r7
|
86b7920c77
|
fix(shellcode): removed unused shellcodes, updated poolparty_stub_x64
|
2024-10-30 12:15:06 -04:00 |
|
dledda-r7
|
b18df9c9fe
|
fix: handling WoW64 injection destinationArch
|
2024-10-30 12:15:06 -04:00 |
|
dledda-r7
|
a97444d79c
|
feat: attempt to have x64->wow64 injection with tp_direct_insertion
|
2024-10-30 12:15:06 -04:00 |
|
dledda-r7
|
ebe086f5ea
|
feat: draft of worker_factory_routine_overwrite technique
|
2024-10-30 12:15:05 -04:00 |
|
dledda-r7
|
7eab552207
|
feat: improving remote handles fetching, tp_direct_insertion support wow64->x64 injection
|
2024-10-30 12:15:05 -04:00 |
|
dledda-r7
|
2a45039182
|
debug(injection): inject_via_poolparty using remote_tp_direct_insertion
|
2024-10-30 12:15:05 -04:00 |
|
dledda-r7
|
cba588451d
|
debug(injection): inject_via_poolparty using remote_tp_wait_insertion
|
2024-10-30 12:15:04 -04:00 |
|
dledda-r7
|
2af3fe5c67
|
feat(injection): improving logging and error handling
|
2024-10-30 12:15:04 -04:00 |
|
dledda-r7
|
9e9bb677fa
|
feat(injection): improving error handling
|
2024-10-30 12:15:04 -04:00 |
|
dledda-r7
|
dc30ecc054
|
feat(injection): updating x86 shellcode
|
2024-10-30 12:15:03 -04:00 |
|
dledda-r7
|
f1492da090
|
feat(injection): adjusting SetLastError when injection fails
|
2024-10-30 12:15:03 -04:00 |
|
dledda-r7
|
b27aed9051
|
debug(injection): update migration to force pool-party injection with remote_tp_direct_insertion
|
2024-10-30 12:15:03 -04:00 |
|
dledda-r7
|
c40d08ad33
|
feat(injection): improving ntdll functions fetch, adding remote_tp_direct_insert variant
|
2024-10-30 12:15:02 -04:00 |
|
dledda-r7
|
cef2e6cd5e
|
feat(injection): commenting unused ntdll functions
|
2024-10-30 12:15:02 -04:00 |
|
dledda-r7
|
af77eda913
|
feat(injection): adding hTriggerEvent to POOLPARTYCONTEXT
|
2024-10-30 12:15:02 -04:00 |
|
dledda-r7
|
c6d066fa86
|
feat(injection): improving x64 shellcode, adding draft x86 shellcode
|
2024-10-30 12:15:01 -04:00 |
|
dledda-r7
|
51a086bc0b
|
chore(metsrv): including poolparty sources and headers to Visual Studio project
|
2024-10-30 12:15:00 -04:00 |
|
dledda-r7
|
25ee5deddf
|
feat(injection): update base_dispatch to use inject_via_poolparty when possible
|
2024-10-30 12:15:00 -04:00 |
|
dledda-r7
|
7f66532422
|
feat(injection): update base_inject to support inject_via_poolparty, added custom stub for x64
|
2024-10-30 12:15:00 -04:00 |
|
dledda-r7
|
ce387785c8
|
feat(injection): adding pool-party injection
|
2024-10-30 12:14:59 -04:00 |
|
Ashley Donaldson
|
a470c4dc3a
|
Fix edge cases in Python and C meterpreters
|
2024-09-25 16:28:37 +10:00 |
|
Ashley Donaldson
|
5c2486c003
|
Treat old-style path separately to new (unescaped) path
|
2024-09-25 16:28:37 +10:00 |
|
Ashley Donaldson
|
92e9de46ae
|
Don't use subshell with array arguments
|
2024-09-25 16:28:37 +10:00 |
|
Ashley Donaldson
|
aa04d88b87
|
Handle new cmd_exec TLV format
|
2024-09-25 16:28:37 +10:00 |
|
dledda-r7
|
a6da6ddac6
|
Land #713, Removed GetThreadId and replaced with optional CLIENTID argument
|
2024-09-20 11:15:19 -04:00 |
|
dledda-r7
|
3420144781
|
Land #712, Fix linking in MinGW for OpenThreadToken on Windows XP x86
|
2024-09-19 05:20:23 -04:00 |
|
cod
|
68bbcf2a2b
|
Revert "Resolve GetThreadId at runtime"
This reverts commit 1ac4741094 .
|
2024-09-17 11:47:39 +02:00 |
|
cod
|
a91fb72536
|
Revert "Update remote_thread.c"
This reverts commit aff81538ec .
|
2024-09-17 11:47:22 +02:00 |
|
cod
|
a5c18499a7
|
C4311: Compiler Warning treated as errors in msvc
|
2024-09-14 19:21:11 +02:00 |
|
dledda-r7
|
eaf37ada4c
|
Land #709, Fix memory leak in request_sys_config_sysinfo
|
2024-09-13 10:33:11 -04:00 |
|
cod
|
26c3809d6f
|
removed GetThreadId and replaced with optional CLIENTID argument
|
2024-08-27 17:35:21 +02:00 |
|
cod
|
aff81538ec
|
Update remote_thread.c
TTypo
|
2024-08-13 22:42:21 +03:00 |
|
cod
|
788d419c6e
|
Added advapi32 in LINK_LIBS for modules which uses OpenThreadToken to fix an error in mingw-x86 toolchain
|
2024-08-13 17:58:44 +02:00 |
|
cod
|
1ac4741094
|
Resolve GetThreadId at runtime
|
2024-08-12 18:08:49 +02:00 |
|
cod
|
446b4d18c3
|
typo in context
|
2024-08-12 16:03:55 +02:00 |
|
cod
|
4428531701
|
memory leak in request_sys_config_sysinfo
|
2024-08-01 10:01:17 +02:00 |
|
cod
|
3332a27af8
|
typo
|
2024-08-01 09:03:54 +02:00 |
|