-
attempt to execute whoami.exe, but no output:
```bash
> .\RunPE.exe C:\Windows\System32\whoami.exe
[*] Running: C:\Windows\System32\whoami.exe with no args
[*] Mapping PE into memory
[*] Mapped P…
-
Everything I can find/read related to reattachconfig usage (I dug mostly through Nomad) uses the reattach config to connect to a previously executed process launched from the main process.
My quest…
-
Hi i tried crypting the exe that binder gave me but it doesnt work, why?
-
Is possible to execute files or at least certain files after windows exclusions are applied? So it won't give detection for that certain files. Start delay didn't help.
-
Hey there,
the payload or malicious PE file should be on the fileytem here. Mostly it will be already fished away by AV, especially if it is malicious or suspicious enough :-)
In my case for tes…
-
some streamer opened my binded file, the problem was that it seemed that it didnt drop the real app and open it, i guess due to detections? or what could have caused that, he managed to get it to work…
-
### Is your feature request related to a problem or use case?
I have a use case where I want all processes launched by WINWORD.exe to be sent to the XXXX sandbox. But WINWORD.exe is not in the sandbo…
-
Hello thanks for you work on that project . I just starting to explore it abilities and even on start can said that it work , and work nice.
Can you plz tell is it possible to send command direct …
-
Hello!
I do not understand what is the point of shellcode installation, if it still drops Stager.exe on disk? The point of shellcode is for fileless execution, right?
-