Skip to content

Instantly share code, notes, and snippets.

View Joshua-Tan's full-sized avatar

Joshua Tan Joshua-Tan

13 followers · 3 following
View GitHub Profile
@Joshua-Tan
Joshua-Tan / msfvenom-reverse-tcp-WaitForSingleObject.md
Last active May 8, 2019 14:29 — forked from mgeeky/msfvenom-reverse-tcp-WaitForSingleObject.md
(OSCE/CTP, Module #3: Backdooring PE Files) Document explaining how to locate WaitForSingleObject(..., INFINITE) within msfvenom's generated payload and how to fix the payload's glitches.

Looking for WaitForSingleObject call within modern msfvenom generated payload.

Abstract

This is a document explaining how to locate WaitForSingleObject(..., INFINITE) within msfvenom's generated payload and how to fix the payload's glitches. It goes through the analysis of a windows/shell_reverse_tcp payload, touching issues like stack alignment, WaitForSingleObject locating & patching. It has been written when I realised there are many topics on the Offensive-Security OSCE/CTP forums touching problem of finding this particular Windows API. Since RE is one of my stronger FU's I decided to write down my explanation of the subject.

Contents:

@Joshua-Tan
Joshua-Tan / Penn Treebank II Tags.md
Created September 25, 2017 05:20 — forked from nlothian/Penn Treebank II Tags.md
Penn Treebank II Tags