pe2shc-to-cdb

This tool will convert shellcode generated using pe_to_shellcode to cdb format. Cdb.exe is a LOLBIN which can help evade detection & application whitelisting. More information can be found about it in my blog post.

Requirements

pe_to_shellcode
xxd

Usage

Step 1

# Generates executable.shc.exe
pe2shc.exe <executable>

Step 2

xxd -i executable.shc.exe > temp.out

Step 3

# Generates out.wds
python cdb.py -f temp.out

Step 4

cdb.exe -pd -cf out.wds -o notepad.exe

Example

The test.exe binary launches calc.exe.

Limitations

I had some issues making it work on some executables. Be aware of this in case you face problems.
Each executable will have a different number of breakpoints. Append 'g' to out.wds as many times as necessary to automatically continue when a breakpoint is hit.

Shellcode implementation of Reflective DLL Injection by Golang. Convert DLLs to position independent shellcode

GoLang date time format - Helpful to convert normal date/time format into GoLang date/time format.

Shellcode Compiler

Convert any office files to pdf format

POC tool to convert CobaltStrike BOF files to raw shellcode

Cross Architecture Shellcode in C

Obfuscates a Python Script and the accompanying Shellcode.

Windows shellcode development in Rust

An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents

Code for Battleyes shellcode

A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.

The program is designed to obfuscate the shellcode.

Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!

Format a date with timezone

A beacon generator using Cobalt Strike and PEzor.

Convert struct, slice, array, map or others for Golang

Universal Office Converter - Convert between any document format supported by LibreOffice/OpenOffice.

Sharperner is a tool for simple executable generator with encrypted shellcode.

Convert GIFs to XLSX format

Executes position independent shellcode from an encrypted zip

Python library to convert Microsoft Outlook .msg files to .eml/MIME message files.

Share this repo

Related Repos

Deep Learning

837

An implementation of chunked, compressed, N-dimensional arrays for Python.

Zarr Latest Release Package Status License Build Status Coverage Downloads Gitter Citation What is it? Zarr is a Python package providing an implement

Deep Learning

317

Serverless proxy for Spark cluster

Hydrosphere Mist Hydrosphere Mist is a serverless proxy for Spark cluster. Mist provides a new functional programming framework and deployment model f

Deep Learning

2.5k

Distributed Tensorflow, Keras and PyTorch on Apache Spark/Flink & Ray

Distributed TensorFlow, PyTorch, Keras and BigDL on Apache Spark & Ray Analytics Zoo is an open source Big Data AI platform, and includes the followin

Deep Learning

Black-Scholes StarkNet Library

Cairo Black-Scholes Library Black-Scholes library implemented as a Cairo smart contract. All inputs, outputs, and internal calculations use 27-digit f

Deep Learning

Motoko library to help create an append-only logger actor

IC Logger This motoko library provides a module to help create an append-only logger actor. Usage You can use this library with the vessel package man

Deep Learning

LeetCode_Solution

LeetCode_Solution LeetCode: https://leetcode.com/problemset/all/ # Title Difficulty Colab Code 1 Two Sum Easy 2 Add Two Numbers Medium 3 Longest Subst

Deep Learning

OCR-D wrapper for detectron2 based segmentation models

ocrd_detectron2 OCR-D wrapper for detectron2 based segmentation models Introduction Installation Usage OCR-D processor interface ocrd-detectron2-segm

Deep Learning

134

Check for LDAP protections regarding the relay of NTLM authentication

LDAP Relay Scan A tool to check Domain Controllers for LDAP server protections regarding the relay of NTLM authentication. If you're interested in the

Deep Learning

Fuzzware's main repository. Start here to install.

Fuzzware Fuzzware is a project for automated, self-configuring fuzzing of firmware images. The idea of this project is to configure the memory ranges

Deep Learning

Time Weighted Asset Mints

TWAM • Time Weighted Asset Mints A minting harness enabling time-weighted assets to determine minting prices. How it works Requirements: maxMintingAmo

Deep Learning

A complete, self-contained example for training ImageNet at state-of-the-art speed with FF...

ffcv ImageNet Training A minimal, single-file PyTorch ImageNet training script designed for hackability. Run train_imagenet.py to get... ...high accur

Deep Learning

เอกสารประกอบการสอนทุกเนื้อหาในช่องยูทูป KongRuksiam Official

📖 เอกสารประกอบการสอน (PDF) 🔏 Blockchain & Smart Contract Blockchain เบื้องต้น Smart Contract & Solidity เบื้องต้น 💻 Programming เขียนโปรแกรมภาษา Ja

Deep Learning

Omnivore A Single Model for Many Visual Modalities

Omnivore: A Single Model for Many Visual Modalities [paper][website] OMNIVORE is a single vision model for many different visual modalities. It learns

Deep Learning

Python implementation of the Lox language from Robert Nystrom's Crafting Interpreters

pylox Python implementation of the Lox language from Robert Nystrom's Crafting Interpreters. https://craftinginterpreters.com. This only implements th

Deep Learning

ParaGen is a PyTorch deep learning framework for parallel sequence generation.

ParaGen ParaGen is a PyTorch deep learning framework for parallel sequence generation. Apart from sequence generation, ParaGen also enhances various N

Category: Python / Deep Learning
Watchers: 3
Star: 44
Fork: 11
Last update: Jan 20, 2022

Convert shellcode generated using pe_2_shellcode to cdb format.

pe2shc-to-cdb

Requirements

Usage

Step 1

Step 2

Step 3

Step 4

Example

Limitations

Related Repos