Shellcode Agent for Windows

Generating `emp3r0r` Agent in Shellcode Form

emp3r0r supports generating its agent in shellcode format using the Donut framework. Follow these steps:

Setup

Prepare your environment by configuring the agent build options as you would for a regular agent.

Generate Shellcode

Run generate command.
Set payload_type to windows_executable.
Adjust any required configurable options.
Execute the run command.

Output

After running the above, you'll find a file with a .bin suffix in your output directory ~/.emp3r0r.

This file contains the compressed raw shellcode for the emp3r0r agent.

Custom Shellcode Loader

Users need to write their own shellcode loaders to:

Download the agent shellcode.
Execute the shellcode in memory.

Usage

Integrate the shellcode into your custom loader to suit your operational needs.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Shellcode Agent for Windows

Generating `emp3r0r` Agent in Shellcode Form

Setup

Generate Shellcode

Output

Custom Shellcode Loader

Usage

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally

Uh oh!

Shellcode Agent for Windows

Generating emp3r0r Agent in Shellcode Form

Setup

Generate Shellcode

Output

Custom Shellcode Loader

Usage

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally

Generating `emp3r0r` Agent in Shellcode Form