Fix missing 'file' reference for custom shellcode

trustedsec / unicorn

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

https://www.trustedsec.com

Other

3.74k stars 817 forks source link

Fix missing 'file' reference for custom shellcode #88

Closed jmhickman closed 6 years ago

jmhickman commented 6 years ago

Unicorn complains about a missing 'file' ref when generating using custom shellcode, because 'file' should be 'open()'.

Never done a PR before, hopefully did this correctly.

trustedsec commented 6 years ago

This is great and thank you for the PR! I'm going to close this one because I'm working on a release here that should hopefully be released today. I've incorporated the changes here (thanks for this) and added a special thanks in the changelog. Thanks very much for the PR!

jmhickman commented 6 years ago

No sweat, and thank you for all the hard work!