I have developed a fast emulator for modern shellcodes, that perform huge loops of millions of instructions emulated for resolving API or for other stuff.
The emulator is in Rust and all the few dependencies as well, so the rust safety is good for emulating malware.
There are shellcodes that can be emulated from the beginning to the end, but when this is not possible the tool has many features that can be used like a console, a memory tracing, register tracing, and so on.
https://github.com/sha0coder/scemu
In less than two seconds we have emulated 7 millions of instructions arriving to the recv.
At this point we have some IOC like the ip:port where it's connecting and other details.
Lets see what happens after the recv() spawning a console at position: 7,012,204
target/release/scemu -f shellcodes/shikata.bin -vv -c 7012204
The "ret" instruction is going to jump to the buffer read with recv() so is a kind of stager.
The option "-e" or "--endpoint" is not ready for now, but it will allow to proxy the calls to get the next stage automatically, but for now we have the details to get the stage.
SCEMU also identify all the Linux syscalls for 32bits shellcodes:
The encoder used in shellgen is also supported https://github.com/MarioVilas/shellgen
Let's check with cobalt-strike:
In verbose mode we could do several greps to see the calls and correlate with ghidra/ida/radare or for example grep the branches to study the emulation flow.
target/release/scemu -f shellcodes/rshell_sgn.bin -vv | grep j
target/release/scemu -f shellcodes/rshell_sgn.bin -vv -c 44000 -l
- Pentest Box Tools Download
- Pentest Tools Find Subdomains
- Hack Website Online Tool
- Underground Hacker Sites
- Hacking Tools For Windows 7
- Hacking Tools For Windows 7
- Hacking Tools Name
- Hacking Tools Windows
- Best Hacking Tools 2019
- Hacker Tools For Windows
- Hack Tools For Pc
- Pentest Tools Subdomain
- Hack Tools Online
- Github Hacking Tools
- Blackhat Hacker Tools
- Hack Website Online Tool
- Hacking Tools Free Download
- Hacking Tools Kit
- New Hack Tools
- Hacker Hardware Tools
- Hacking Tools Online
- Hacking Tools 2019
- Blackhat Hacker Tools
- Hacker Tools For Windows
- Android Hack Tools Github
- Nsa Hacker Tools
- Pentest Tools Website Vulnerability
- Pentest Tools For Android
- Hacker Tools List
- Hacking Tools Windows
- Hack Rom Tools
- Pentest Tools Github
- Hacking Tools For Beginners
- Hack Tools Pc
- Hack Website Online Tool
- Hacking Tools Windows 10
- Hacker Tools Github
- Hacker Tools For Pc
- Hacker Tools Free
- Hacking Tools For Windows
- Hacking Apps
- Hack Tools Pc
- Hacking Tools Free Download
- Hackers Toolbox
- Pentest Tools Port Scanner
- Hacking Tools 2020
- Hacking Tools Windows
- Hacker Tools Apk
- Pentest Tools For Windows
- Best Hacking Tools 2020
- Hacker Tools Apk Download
- Hacker Search Tools
- Pentest Reporting Tools
- Pentest Tools
- Hacker Tools Free
- Hacker Tools 2019
- Free Pentest Tools For Windows
- New Hack Tools
- Bluetooth Hacking Tools Kali
- How To Install Pentest Tools In Ubuntu
- Pentest Tools Framework
- Hacker Tools 2020
- Pentest Tools Find Subdomains
- Hack Tool Apk
- Tools 4 Hack
- Hacking Tools For Kali Linux
- Pentest Tools List
- Hack Tool Apk
- Pentest Tools Nmap
- Beginner Hacker Tools
- Pentest Tools For Android
- Pentest Tools Open Source
- Pentest Reporting Tools
- Hack And Tools
- Hack Tools Github
- Usb Pentest Tools
- Physical Pentest Tools
- Hacking Tools And Software
- Hacking Tools Download
- How To Install Pentest Tools In Ubuntu
- Ethical Hacker Tools
- Bluetooth Hacking Tools Kali
- Hack Website Online Tool
- Hack And Tools
- Pentest Tools Bluekeep
- Hacker Tools 2019
- Hack Tools 2019
- Hack Tools For Pc
- Hacking Tools 2019
- Hacker Tools Software
- Hacker Tools 2020
- Hacker Tools Online
- Pentest Tools Tcp Port Scanner
- Black Hat Hacker Tools
- Hacking Tools For Games
- Hack Tools Mac
- Hack Tools For Games
- Hacker Tools Linux
- Hack Tool Apk No Root
- Pentest Tools For Android
- Hack Rom Tools
- Hacker Security Tools
- Hacking Tools For Beginners
- Hacking Tools Free Download
- Hak5 Tools
- Hacker Tool Kit
- Hack App
- Hacker Tools Software
- Hacking Tools Mac
- Tools Used For Hacking
- Hack Tools Github
- Hackers Toolbox
- Game Hacking
- Hack Tools Download
- Pentest Tools List
- World No 1 Hacker Software
- Best Hacking Tools 2019
- Easy Hack Tools
- Hacker Tools Apk Download
- Pentest Tools List
- Pentest Recon Tools
- Top Pentest Tools
- Hacking Tools Software
- Install Pentest Tools Ubuntu
- Hack Tools For Mac
- Hack Tools Github
- Hacking Tools And Software
- Pentest Tools Review
- Pentest Reporting Tools
- Hacker Tool Kit
- Pentest Tools
- Top Pentest Tools
- Physical Pentest Tools
- Hack Tools
- Hack Tool Apk
- Hack Tools Online
- Beginner Hacker Tools
- Hacking Tools Download
- Hack Tools
- Pentest Automation Tools
- Github Hacking Tools
- Pentest Tools Bluekeep
- Hack Tools For Games
- Pentest Tools Website
- Hack Rom Tools
- Hacking Tools Github
- Hack Tools
- Pentest Tools Website Vulnerability
- Pentest Tools List
- Hackers Toolbox
- Free Pentest Tools For Windows
- Pentest Tools Apk
- Pentest Tools For Mac
- Best Pentesting Tools 2018
- Pentest Tools Website Vulnerability
- Install Pentest Tools Ubuntu
- Hack And Tools
- Pentest Tools Tcp Port Scanner
- Pentest Tools Bluekeep
- Hacking Tools Windows
- Pentest Tools Port Scanner
- Hack Website Online Tool
No comments:
Post a Comment