Reverse Engineering

Injector: Injecting Your Exploit Made Easier!

August 19, 2010 11:05 am · 0 comments

by Black

in Security Reconnaissance,Security tools

486ef2b57724850c558f95ee846fcc47 Injector: Injecting Your Exploit Made Easier!What is Injector?
Injector is a little tool that will inject your code into a target process.

Injector is a POST EXPLOITATION tool. It can use generic shellcodes, that may be generated from the Metasploit framework and inject the shellcode into the target process and then run the code with the context of target process. By doing this it can evade anti viruses and provide a very powerful base for post exploitation.

Features of Injector:

  • Ask for a file (provide flexibility, you can choose your own codes).
  • Can provide On demand shells.(inject code into the processes and get shell).
  • Evade Anti viruses(because we are not generating exe, we are injecting direct shellcode.) This is one of the most powerful technique employed with this tool set.
  • Alphanumeric shellcodes are bullet proof solution for Anti viruses..
  • Can backdoor a process (bind shell).
  • Can provide ability to switch from one exploitation tool to other..(for eg.. inject meterpreter shellcode -Metasploit, inject bind shell –Core Impact

Video tutorial of Injector:
Injecting code into a process plus bypass AV from D0uBle ZerO Zer0 on Vimeo.

Injector is a post exploitation phase tool. It can bypass Anti viruses and can be used for demonstration purposes. It does so, by not writing the injected executable to the hard disk.

Download Injector v3 here

Searches leading to this post:
10613 c exploit, bypass av ollydbg, how to inject dns server for testing, shellcode program counter

Tagged as: , , ,

Be the first to comment!

ROPEME – ROP Exploit Made Easy

August 14, 2010 11:43 am · 0 comments

by Black

in Open Source,Reverse Engineering,Security Reconnaissance,Security tools

ROPEME is a PoC tool for ROP exploit automation on Linux x86. It contains a set of simple Python scripts to generate and search for ROP gadgets from binaries and libraries (e.g libc). A sample payload class is also included to help generate multistage ROP payload with the technique described in the Black Hat USA 2010 talk

Well small but powerfull code will help you get in deep and working of linux kernals.

Small video display about ROPEME

Download ROPEME POC code Here

Searches leading to this post:
ropeme, rop exploit, ROP tools, ropeme download

Tagged as: , , ,

Be the first to comment!

UPDATE: VERA 0.20!

August 13, 2010 16:14 pm · 0 comments

by Black

in Malware Analysis,Open Source,Reverse Engineering

You can find our first post about VERA, the reverse engineering and visualization program here. Now, the author has released an updated version 0.20 for us!

“VERA is a visualization tool to help understand the dynamic execution of a program.”

This is the change log for VERA version 0.20:

  • Rewrite of entire codebase to wxWidgets (should allow for future ports to other platforms)
  • Added configuration file (~/.wxVera/wxvera.ini)
  • Read/save previous window position and size from/to config file
  • Fixed a graph centering problem
  • Added update checking code
  • Reloading of graphs more efficient
  • Added welcome message
  • Introduced notebook style for GUI

Download VERA version 0.2 here.

Tagged as: , ,

Be the first to comment!

Page 1 of 7123456...Last »