BlogMemesGitHubAbout

Initial Access

Open Source Loaders with Track Record of Successful Callbacks with Light Customization

This assumes that you're doing your due diligence check on potential detections using tools such as: ThreatCheck, Non-Distributed Checks (Kleenscan, Litterbox) and YARA.

Assumed Breach

Assuming control over a compromised laptop, there are two ways to get an initial C2 callback:

  1. Custom UDRL

    1. https://github.com/NtDallas/OdinLdr

    2. https://github.com/boku7/BokuLoader

  2. C2 Generated Shellcode + Custom Shellcode Runner/Process Injector

    1. https://github.com/cpu0x00/Ghost

    2. https://github.com/Swayampadhy/ExceptionBITS

    3. https://github.com/monsieurPale/KhimairaLdr

PreviousRed Team InfrastructureNextReconnaissance

Last updated