0008454: Donut - position-independent code

ID	Project	Category	View Status	Date Submitted	Last Update

0008454	Kali Linux	Queued Tool Addition	public	2023-09-08 13:40	2023-09-14 11:34

Reporter	tjnull	Assigned To
Priority	none	Severity	tweak	Reproducibility	always
Status	acknowledged	Resolution	open
Product Version	2023.3

Summary	0008454: Donut - position-independent code
Description	Donut is a position-independent code that enables in-memory execution of VBScript, JScript, EXE, DLL files and dotNET assemblies. A module created by Donut can either be staged from a HTTP server or embedded directly in the loader itself. The module is optionally encrypted using the Chaskey block cipher and a 128-bit randomly generated key. After the file is loaded and executed in memory, the original reference is erased to deter memory scanners. The generator and loader support the following features:
Steps To Reproduce	git clone http://github.com/thewover/donut.git pip3 install donut-shellcode Releases: https://github.com/TheWover/donut/releases

Date Modified	Username	Field	Change
2023-09-08 13:40	tjnull	New Issue
2023-09-14 11:33	g0tmi1k	Priority	urgent => none
2023-09-14 11:33	g0tmi1k	Category	New Tool Requests => Queued Tool Addition
2023-09-14 11:33	g0tmi1k	Summary	Donut => Donut - position-independent code
2023-09-14 11:33	g0tmi1k	Status	new => acknowledged
2023-09-14 11:34	g0tmi1k	Note Added: 0018477

g0tmi1k 2023-09-14 11:34 administrator ~0018477	@kali-team, please could this be packaged up. @author, If you want to help the packaging process, you can check the documentation here ~ https://www.kali.org/docs/development/public-packaging