itsMe Posted July 11, 2023 Share Posted July 11, 2023 This is the hidden content, please Sign In or Sign Up RecycledInjector: Fully Undetected same-process native/.NET assembly shellcode injector Description (Currently) Fully Undetected same-process native/.NET assembly shellcode injector based on RecycledGate by thefLink, which is also based on HellsGate + HalosGate + TartarusGate to ensure undetectable native syscalls even if one technique fails. To remain stealthy and keep entropy on the final executable low, do ensure that shellcode is always loaded externally since most AV/EDRs won't check for signatures on non-executable or DLL files anyway. Important to also note that the fully undetected part refers to the loading of the shellcode, however, the shellcode will still be subject to behavior monotoring, thus make sure the loaded executable also makes use of defense evasion techniques (e.g., SharpKatz which features DInvoke instead of Mimikatz). This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts