VoldeSec
VoldeSec
Thanks @hasherezade , 1. Yes tried with runshc and it works perfectly fine. 2. I am trying the module stomping, referenced to your another project "module_overloading". (already get rid of...
@hasherezade Yes, it works by using the injector to inject (e.g. calc.exe and other PE to output file for PoC) remote process (i.e. cmd.exe)
I have invited you in wire for further discussion. I am glad if you have time to give recommendation on the code. Thanks!