Skip to content
/ goFunctionStomping Public

FunctionStomping (using golang) : A new shellcode injection technique.

License

MIT license
4 stars 7 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hackerxj007/goFunctionStomping

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
goFunctionStomping
goFunctionStomping
 
 
goFunctionStomping_test1
goFunctionStomping_test1
 
 
goFunctionStomping_test2
goFunctionStomping_test2
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

goFunctionStomping

FunctionStomping using golang

Description

This is a brand-new technique for shellcode injection to evade AVs and EDRs. This technique is inspired by Module Stomping and has some similarities. As to this date (23-01-2022) also hollows-hunter doesn't find it.

See detail:

https://idov31.github.io/2022-01-28-function-stomping/

Usage

  1. Add the project dir to you project.
  2. Change the "winApi" package's import method.

image

image

Acknowledgments

https://github.com/idov31/functionstomping
https://idov31.github.io/2022-01-28-function-stomping/

About

FunctionStomping (using golang) : A new shellcode injection technique.

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

0 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages