This post is by a banned member (Schmuffin) - Unhide
30 May, 2022 - 12:24 AM
Reply
This post is by a banned member (zortex111) - Unhide
20 June, 2022 - 10:41 PM
Reply
(28 March, 2022 - 05:17 PM)tomi243 Wrote: Show MoreHow to use this
How to use thisInject the dumper into the loader ( x86 ).
- Let the loader try to inject (manual map) the binary into the target process.
- Watch how the binary is being exported.
Configuration
Variables ( dllmain.cpp - DllMain ).
- bool
- bConsole
- true - shows you the debug console
- false - hides the debug console
- bLogConsole
- true - log the debug output to a file and not to the comnsole
- false - don't log anything and let everything be as it was
Tip
The second VirtualAllocEx (and the next WriteProcessMemory after it) is/are called just for loader' stub, it/they isn't/aren't useful on its/their own at all.
These last 2 files are not part of the binary as they are loader' stub!!!
![[Image: 144725498-c79a2d9e-da6e-44ba-911f-94105af5d449.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F68382500%2F144725498-c79a2d9e-da6e-44ba-911f-94105af5d449.png)
Screenshots
Show ContentSpoiler:
![[Image: 144724541-0b7221b4-a81f-45d1-b94f-a9cae82d8d89.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F68382500%2F144724541-0b7221b4-a81f-45d1-b94f-a9cae82d8d89.png)
Dump process:
![[Image: 144724914-d5e379b3-7196-47a4-8c2a-e95ed38c61f1.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F68382500%2F144724914-d5e379b3-7196-47a4-8c2a-e95ed38c61f1.png)
File output:
![[Image: 144724941-ec1111b5-83a8-4fcb-9869-8e0f98fc188a.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fuser-images.githubusercontent.com%2F68382500%2F144724941-ec1111b5-83a8-4fcb-9869-8e0f98fc188a.png)
LEAVE A LIKE PLEASEEEE
Stay Hyped!!!
ty i needed this
This post is by a banned member (Ptabidatt555) - Unhide
08 December, 2022 - 03:14 PM
Reply
(28 March, 2022 - 05:17 PM)tomi243 Wrote: Show MoreHow to use this
How to use thisInject the dumper into the loader ( x86 ).
- Let the loader try to inject (manual map) the binary into the target process.
- Watch how the binary is being exported.
Configuration
Variables ( dllmain.cpp - DllMain ).
- bool
- bConsole
- true - shows you the debug console
- false - hides the debug console
- bLogConsole
- true - log the debug output to a file and not to the comnsole
- false - don't log anything and let everything be as it was
Tip
The second VirtualAllocEx (and the next WriteProcessMemory after it) is/are called just for loader' stub, it/they isn't/aren't useful on its/their own at all.
These last 2 files are not part of the binary as they are loader' stub!!!
Screenshots
Show ContentSpoiler:
Dump process:
File output:
LEAVE A LIKE PLEASEEEE
Stay Hyped!!!
tyyyyyyy
This post is by a banned member (rizkyblackhat) - Unhide
20 March, 2023 - 04:22 AM
Reply
This post is by a banned member (Ivano6969) - Unhide
21 March, 2023 - 12:18 PM
Reply
This post is by a banned member (Zerror111) - Unhide
21 March, 2023 - 09:58 PM
Reply
(28 March, 2022 - 05:17 PM)tomi243 Wrote: Show MoreHow to use this
How to use thisInject the dumper into the loader ( x86 ).
- Let the loader try to inject (manual map) the binary into the target process.
- Watch how the binary is being exported.
Configuration
Variables ( dllmain.cpp - DllMain ).
- bool
- bConsole
- true - shows you the debug console
- false - hides the debug console
- bLogConsole
- true - log the debug output to a file and not to the comnsole
- false - don't log anything and let everything be as it was
Tip
The second VirtualAllocEx (and the next WriteProcessMemory after it) is/are called just for loader' stub, it/they isn't/aren't useful on its/their own at all.
These last 2 files are not part of the binary as they are loader' stub!!!
Screenshots
Show ContentSpoiler:
Dump process:
File output:
LEAVE A LIKE PLEASEEEE
Stay Hyped!!!
thanks man going to check this out
This post is by a banned member (MinilAyicuhV5) - Unhide
22 March, 2023 - 06:59 PM
Reply
(28 March, 2022 - 05:17 PM)tomi243 Wrote: Show MoreHow to use this
How to use thisInject the dumper into the loader ( x86 ).
- Let the loader try to inject (manual map) the binary into the target process.
- Watch how the binary is being exported.
Configuration
Variables ( dllmain.cpp - DllMain ).
- bool
- bConsole
- true - shows you the debug console
- false - hides the debug console
- bLogConsole
- true - log the debug output to a file and not to the comnsole
- false - don't log anything and let everything be as it was
Tip
The second VirtualAllocEx (and the next WriteProcessMemory after it) is/are called just for loader' stub, it/they isn't/aren't useful on its/their own at all.
These last 2 files are not part of the binary as they are loader' stub!!!
Screenshots
Show ContentSpoiler:
Dump process:
File output:
LEAVE A LIKE PLEASEEEE
Stay Hyped!!!
thanks for sharing dude
This post is by a banned member (Japhetx) - Unhide
25 July, 2023 - 04:35 AM
Reply
