Shellcode2Exe trainer


Author: David Zimmer
Date: 08.05.13 - 6:29pm



Posted a new video trainer today. Covers most of the features, but there are a couple extras that have been added since I made this video. New additions include:
  • two x64 husks (standard and advanced)
  • DetectType which recgonizes: swf,exe,perl,js,bash,html,low entropy
  • hexdump mode has added:
    • xor key scanner
    • entry point scanner
    • web disassembler
    • byte/endian swap
    • text dumper
  • beta support for action script (if you really havent seen it in a while)
Also i dont think I showed it in the video, but shellcode_2_exe can handle shellcode blocks which have new lines, or have been divided up into quoted chunks such as "%u9090"+"%ueb15". It can not handle multiline variants where something like sc+="..."; occurs on every line. For these you will have to manually strip the variable name before input. When in doubt, first use the hex dump feature to make sure it translated correctly, and then download from there.






Comments: (0)

 
Leave Comment:
Name:
Email: (not shown)
Message: (Required)
Math Question: 69 + 92 = ? followed by the letter: L 



About Me
More Blogs
Main Site
Posts: (All)
2024 ( 1 )
2023 ( 4 )
2022 ( 5 )
2021 ( 2 )
2020 ( 5 )
2019 ( 6 )
2017 ( 5 )
2016 ( 4 )
2015 ( 5 )
2014 ( 5 )
2013 (9)
     Guest Post @ hexblog
     TCP Stream Reassembly
     SysAnalyzer Updates
     Apilogger Video
     Shellcode2Exe trainer
     scdbg updates
     IDA Javascript w/IDE
     Rop Analysis II
     scdbg vrs ROP
2012 ( 13 )
2011 ( 19 )
2010 ( 11 )
2009 ( 1 )