Skip to content

Cracked6appybara/EarlyCascade

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
cascadeInjector
cascadeInjector
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
cascadeInjector.sln
cascadeInjector.sln
 
 

Repository files navigation

Early Cascade Injection

Thanks to Guido Miggelenbrink from Outflanks blog post about this new injection technique. Early Cascade Injection.

Since I am still quite new to maldev I thought it would be a fun and smart idea to have a go at writing this injection technique out. I had also seen Cracked5pider try this as well, which I have some bits from their code, and that had helped me get an overall understand of how I should go about writing this. So big thanks to Cracked5pider as well.

Things to improve

  • Dynamically get the offsets to both g_ShimsEnabled and g_pfnSE_DllLoaded Pointers.
  • Store both payloads in other ways. I.e Resources.

About

No description or website provided.

Topics

injection poc edr maldev

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages