Chisel doesn't work in donut v 0.9.3

TheWover / donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

BSD 3-Clause "New" or "Revised" License

3.61k stars 637 forks source link

Chisel doesn't work in donut v 0.9.3 #86

Closed checkymander closed 2 years ago

checkymander commented 3 years ago

When attempting to load a modified chisel binary using donut v0.9.3 with the following options:

 donut.exe -z 1 -b 1 -a 2 -o chiselIP644.bin chisel-master\chisel-master\chisel.exe

The server never receives a callback when loading the shellcode using exec-shellcode functionality. However when moving back to donut v0.9.2 it works fine with the following command:

 donut.exe -a2 -b1 -o chisel.bin -f "C:\Users\user\Downloads\chisel-master\chisel-master\chisel.exe"

vysecurity commented 2 years ago

Did you figure this one out.

checkymander commented 2 years ago

I just used the release version of 0.9.2

vysecurity commented 2 years ago

Well got it working in the end. Just the shellcode doesn’t work with cobalts shellcode inject

checkymander commented 2 years ago

awesome, looks like @TheWover can prolly close this issue then.

checkymander commented 2 years ago

or...I can.