Gh0st
/
PowerSploit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
PowerSploit/CodeExecution/Invoke-ReflectivePEInjectio.../Shellcode
History
Matt Graeber dfec277813 Added Invoke-ReflectivePEInjection 
Another awesome addition from Joe Bialek. Invoke-ReflectivePEInjection
is a vast improvement over Invoke-ReflectiveDllInjection. It adds the
following features:

* Now supports loading exe files in memory
* Supports reflective dll injection into a remote process
* Additional sample Visual Studio solutions
 		2013-05-31 19:35:26 -04:00
..
x64 Added Invoke-ReflectivePEInjection 2013-05-31 19:35:26 -04:00
x86 Added Invoke-ReflectivePEInjection 2013-05-31 19:35:26 -04:00
readme.txt Added Invoke-ReflectivePEInjection 2013-05-31 19:35:26 -04:00

readme.txt 

This contains the assembly code I used to build the shellcode the PowerShell script uses. Some of the assembly isn't included beause I didn't save it, this should just be for the SUPER easy stuff like moving an address to EAX and returning.

Compile:
x64:
nasm -f elf64 FileName.asm
ld -o FileName FileName.o
objdump -M intel -d FileName

x86:
nasm FileName.asm
ld -o FileName FileName.o
objdump -M intel -d FileName