loader

package
v0.0.0-...-c65d5b7 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 7, 2025 License: MIT Imports: 16 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	NAM = "NtAllocateVirtualMemory"
	NPM = "NtProtectVirtualMemory"
	NCT = "NtCreateThreadEx"
)

Variables

This section is empty.

Functions

func ADsMem 

func ADsMem(shellcode []byte) error

func AllocMemory 

func AllocMemory(shellcode []byte) (uintptr, error)

func CreateProcessWithPipe 

func CreateProcessWithPipe(shellcode []byte, program string) error

func CreateRemoteThread 

func CreateRemoteThread(shellcode []byte, pid int) error

func CreateRemoteThreadHalos 

func CreateRemoteThreadHalos(shellcode []byte) error

func CreateThread 

func CreateThread(shellcode []byte) error

func Direct 

func Direct(shellcode []byte)

func EarlyBird 

func EarlyBird(shellcode []byte, path string) error

func EnumChildWindowsX 

func EnumChildWindowsX(shellcode []byte) error

EnumChildWindowsX C++ EnumChildWindows(NULL, (WNDENUMPROC)addr, 0);

func EnumDesktopWindowsX 

func EnumDesktopWindowsX(shellcode []byte) error

EnumDesktopWindowsX C++ EnumDesktopWindows(NULL,(WNDENUMPROC)addr, 0);

func EnumPageFilesWX 

func EnumPageFilesWX(shellcode []byte) error

func EnumSystemLocalesAX 

func EnumSystemLocalesAX(shellcode []byte) error

EnumSystemLocalesAX C++ EnumSystemLocalesA((LOCALE_ENUMPROCA)addr, 0);

func EnumSystemLocalesExX 

func EnumSystemLocalesExX(shellcode []byte) error

func EnumSystemLocalesHalos 

func EnumSystemLocalesHalos(shellcode []byte) error

EnumSystemLocalesHalos Hell's Gate + Halo's Gate technique

func EnumThreadWindowsX 

func EnumThreadWindowsX(shellcode []byte) error

EnumThreadWindowsX C++ EnumThreadWindows(0, (WNDENUMPROC)addr, 0);

func EnumTimeFormatsAX 

func EnumTimeFormatsAX(shellcode []byte) error

EnumTimeFormatsAX C++ EnumTimeFormatsA((TIMEFMT_ENUMPROCA)addr, 0, 0);

func EnumWindowsAction 

func EnumWindowsAction(action func(uintptr) error, shellcode []byte) error

func EnumWindowsX 

func EnumWindowsX(shellcode []byte) error

EnumWindowsX C++ EnumWindows((WNDENUMPROC)addr, 0);

func EnumerateLoadedModulesX 

func EnumerateLoadedModulesX(shellcode []byte) error

func EtwpCreateEtwThreadX 

func EtwpCreateEtwThreadX(shellcode []byte) error

func Fiber 

func Fiber(shellcode []byte) error

func HalosGate 

func HalosGate(shellcode []byte) error

HalosGate loader

func Ipv4AddressA 

func Ipv4AddressA(shellcode []string)

func MacAddressA 

func MacAddressA(shellcode []string)

func NoRwx 

func NoRwx(shellcode []byte, path string) error

func NtQueueApcThreadEx 

func NtQueueApcThreadEx(shellcode []byte) error

func Sha256 

func Sha256(data []byte) []byte

func Sha256Hex 

func Sha256Hex(s string) string

func ShellcodeToUUID 

func ShellcodeToUUID(shellcode []byte) ([]string, error)

ShellcodeToUUID takes in shellcode bytes, pads it to 16 bytes, breaks them into 16 byte chunks (size of a UUID), converts the first eight bytes into Little Endian format, creates a UUID from the bytes, and returns an array of UUIDs

func StaneAlone 

func StaneAlone(shellcode []byte)

func UUIDFromString 

func UUIDFromString(shellcode []byte) error

func WriteMemory 

func WriteMemory(inbuf []byte, destination uintptr)

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.
JackTT - Gopher 🇻🇳