View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0002353 | Kali Linux | New Tool Requests | public | 2015-06-22 09:09 | 2020-02-11 12:07 |
Reporter | BorjaMerino | Assigned To | g0tmi1k | ||
Priority | normal | Severity | feature | Reproducibility | always |
Status | closed | Resolution | won't fix | ||
Summary | 0002353: TLS Injector. Injecting shellcodes through TLS callbacks | ||||
Description | TlsInjector.py is a script in python that lets you inject a shellcode in a binary to be executed through TLS callbacks. As far as I know there isn't any tool that let's you backdoor a binary using this method in an automated way. The fact of using a TLS callback instead of the usual injection techniques has some added advantages; for example, you don’t need to modify the entry point to jump/call to the code cave and then redirect the execution flow to the original program. Another key advantage is that a TLS callback runs the code before the entry point is reached. The script will accept the shellcode you want to inject and the target binary. The script also includes a payload that let's you inject (though LoadLibrary) an evil DLL. You only need to use the -l option and feed it with the DLL path as a parameter. More payloads will be included as needed. The tools is available in Github: More info: | ||||
Steps To Reproduce | $ python tlsInjector.py -h Info: Usage: Examples: | ||||
We need to do the following: apt-get install python-pefile Before you use this python script for the first time. |
|
To help speed up the process of evaluating the tool, please make sure to include the following information (the more information you include, the more beneficial it will for us):
|
|
Python2 - which is EOL |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2015-06-22 09:09 | BorjaMerino | New Issue | |
2015-07-06 16:22 | stormtide | Note Added: 0003475 | |
2018-01-29 15:16 | g0tmi1k | Note Added: 0008490 | |
2019-12-09 13:30 | g0tmi1k | Severity | minor => feature |
2020-02-11 12:06 | g0tmi1k | Note Added: 0012219 | |
2020-02-11 12:07 | g0tmi1k | Assigned To | => g0tmi1k |
2020-02-11 12:07 | g0tmi1k | Status | new => closed |
2020-02-11 12:07 | g0tmi1k | Resolution | open => won't fix |