Vitamin-K Hash Collision Always Causes Windows API Resolution To Fail

rapid7 / metasploit-framework

Metasploit Framework

https://www.metasploit.com/

Other

33.76k stars 13.89k forks source link

Vitamin-K Hash Collision Always Causes Windows API Resolution To Fail #19309

Closed operat1ve closed 1 week ago

operat1ve commented 2 months ago

Steps to reproduce

Run Vitamin-K available here: https://karma-x.io/blog/post/33/?=gh
Attempt to run any Windows Metasploit shellcode, Reflective DLL injection, or meterpreter that uses this code:

https://github.com/rapid7/metasploit-framework/blob/master/external/source/shellcode/windows/x64/src/block/block_api.asm

Expected behavior

Shellcode execution should be able to resolve Windows API appropriately.

Current behavior

Vitamin-K creates an alert and causes shellcode failure.

Metasploit version

metasploit v6.3.34-dev but all Metasploit versions fail.

Additional Information

github-actions[bot] commented 1 month ago

Hi!

This issue has been left open with no activity for a while now.

We get a lot of issues, so we currently close issues after 60 days of inactivity. It’s been at least 30 days since the last update here. If we missed this issue or if you want to keep it open, please reply here. You can also add the label "not stale" to keep this issue open!

As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.

github-actions[bot] commented 1 week ago

Hi again!

It’s been 60 days since anything happened on this issue, so we are going to close it. Please keep in mind that I’m only a robot, so if I’ve closed this issue in error please feel free to reopen this issue or create a new one if you need anything else.

As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request.