Closed FunnyWolf closed 3 years ago
This project merely shows the concept on the base example for Cobalt Strike's Beacon.
In order to work with other C2 frameworks, shellcodes - you may need to define other WinAPI that should be hooked to intercept shellcode's execution right in the middle.
Since this is a PoC showing the concept, I don't plan on adding support for any other product in the market.
Hopefully you'll understand, Thanks. M.
All is good if use project with CS,but if I use project to load an MSF shellcode,it will shutdown and proecess exit. here is log from ShellcodeFluctuation
and here is log from meterpreter:
I think hook works normally, but encrypted memory may destroy the execution of meterpreter