├── .gitignore
├── .gitmodules
├── README.md
├── cc_shellcode.sln
├── cc_shellcode.v12.suo
├── cc_shellcode
    ├── cc_shellcode.vcxproj
    ├── cc_shellcode.vcxproj.filters
    ├── cc_shellcode.vcxproj.user
    └── src
    │   └── main.cpp
└── imports.def


/.gitignore:
--------------------------------------------------------------------------------
 1 | # Windows image file caches
 2 | Thumbs.db
 3 | ehthumbs.db
 4 | 
 5 | # Folder config file
 6 | Desktop.ini
 7 | 
 8 | # Recycle Bin used on file shares
 9 | $RECYCLE.BIN/
10 | 
11 | # Windows Installer files
12 | *.cab
13 | *.msi
14 | *.msm
15 | *.msp
16 | 
17 | # =========================
18 | # Operating System Files
19 | # =========================
20 | 
21 | # OSX
22 | # =========================
23 | 
24 | .DS_Store
25 | .AppleDouble
26 | .LSOverride
27 | 
28 | # Icon must ends with two \r.
29 | Icon

30 | 
31 | # Thumbnails
32 | ._*
33 | 
34 | # Files that might appear on external disk
35 | .Spotlight-V100
36 | .Trashes
37 | # Compiled Object files
38 | *.slo
39 | *.lo
40 | *.o
41 | *.obj
42 | 
43 | # Precompiled Headers
44 | *.gch
45 | *.pch
46 | 
47 | # Compiled Dynamic libraries
48 | *.so
49 | *.dylib
50 | *.dll
51 | 
52 | # Fortran module files
53 | *.mod
54 | 
55 | # Compiled Static libraries
56 | *.lai
57 | *.la
58 | *.a
59 | *.lib
60 | 
61 | # Executables
62 | *.exe
63 | *.out
64 | *.app
65 | 
66 | *.tlog
67 | *.inf
68 | *.cer
69 | *.pdb
70 | *.sys
71 | *.log


--------------------------------------------------------------------------------
/.gitmodules:
--------------------------------------------------------------------------------
 1 | [submodule "Common"]
 2 | 	path = Common
 3 | 	url = https://github.com/k33nteam/Common.git
 4 | [submodule "LIBC"]
 5 | 	path = LIBC
 6 | 	url = https://github.com/k33nteam/LIBC.git
 7 | [submodule "LOADER"]
 8 | 	path = LOADER
 9 | 	url = https://github.com/k33nteam/LOADER.git
10 | [submodule "CVE"]
11 | 	path = CVE
12 | 	url = https://github.com/k33nteam/CVE.git
13 | [submodule "Core"]
14 | 	path = Core
15 | 	url = https://github.com/k33nteam/Core.git
16 | [submodule "boost"]
17 | 	path = boost
18 | 	url = https://github.com/boostorg/boost
19 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | CC-SHELLCODING framework
 2 | ==========================
 3 | 
 4 | **info**
 5 | 
 6 | - http://www.k33nteam.org/blog.htm -
 7 | - CC-SHELLCODING
 8 | 
 9 | **branches**
10 | 
11 | - master, including boost
12 | - lights, without boost, all boost dependencies should be carried by you (clone apropriate libs)
13 | 
14 | **requirements**
15 | 
16 | - Visual Studio 2013
17 | - python 2.7 x86
18 | 
19 | **note**
20 | 
21 | - for playing with imports look at CreateLoader.py
22 | - imports dependet files : imports.def, imports.ii, ImportDeclaration.h, ImportWrapper.hpp, usr_imports.asm
23 | 


--------------------------------------------------------------------------------
/cc_shellcode.sln:
--------------------------------------------------------------------------------
 1 | 
 2 | Microsoft Visual Studio Solution File, Format Version 12.00
 3 | # Visual Studio 2013
 4 | VisualStudioVersion = 12.0.21005.1
 5 | MinimumVisualStudioVersion = 10.0.40219.1
 6 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "cc_shellcode", "cc_shellcode\cc_shellcode.vcxproj", "{A24AE05E-430D-4699-8141-4C37E761DA12}"
 7 | EndProject
 8 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "libc", "LIBC\libc.vcxproj", "{6B090B01-76A1-4521-902D-6011FE9AA4ED}"
 9 | EndProject
10 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "loader", "LOADER\loader.vcxproj", "{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}"
11 | EndProject
12 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "CVE", "CVE\CVE.vcxproj", "{444C9878-7D1A-4028-8416-3C7D8672FDEB}"
13 | EndProject
14 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "Core", "Core\Core.vcxproj", "{8F56699B-2357-48BC-A739-D831F3421C97}"
15 | EndProject
16 | Global
17 | 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
18 | 		Debug|Mixed Platforms = Debug|Mixed Platforms
19 | 		Debug|Win32 = Debug|Win32
20 | 		Debug|x64 = Debug|x64
21 | 		Release|Mixed Platforms = Release|Mixed Platforms
22 | 		Release|Win32 = Release|Win32
23 | 		Release|x64 = Release|x64
24 | 	EndGlobalSection
25 | 	GlobalSection(ProjectConfigurationPlatforms) = postSolution
26 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
27 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Debug|Mixed Platforms.Build.0 = Debug|Win32
28 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Debug|Win32.ActiveCfg = Debug|Win32
29 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Debug|Win32.Build.0 = Debug|Win32
30 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Debug|x64.ActiveCfg = Debug|Win32
31 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|Mixed Platforms.ActiveCfg = Release|Win32
32 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|Mixed Platforms.Build.0 = Release|Win32
33 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|Win32.ActiveCfg = Release|Win32
34 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|Win32.Build.0 = Release|Win32
35 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|x64.ActiveCfg = Release|x64
36 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|x64.Build.0 = Release|x64
37 | 		{A24AE05E-430D-4699-8141-4C37E761DA12}.Release|x64.Deploy.0 = Release|x64
38 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
39 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|Mixed Platforms.Build.0 = Debug|Win32
40 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|Win32.ActiveCfg = Debug|Win32
41 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|Win32.Build.0 = Debug|Win32
42 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|x64.ActiveCfg = Debug|x64
43 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|x64.Build.0 = Debug|x64
44 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Debug|x64.Deploy.0 = Debug|x64
45 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|Mixed Platforms.ActiveCfg = Release|Win32
46 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|Mixed Platforms.Build.0 = Release|Win32
47 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|Win32.ActiveCfg = Release|Win32
48 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|Win32.Build.0 = Release|Win32
49 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|x64.ActiveCfg = Release|x64
50 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|x64.Build.0 = Release|x64
51 | 		{6B090B01-76A1-4521-902D-6011FE9AA4ED}.Release|x64.Deploy.0 = Release|x64
52 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
53 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Debug|Mixed Platforms.Build.0 = Debug|Win32
54 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Debug|Win32.ActiveCfg = Debug|Win32
55 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Debug|Win32.Build.0 = Debug|Win32
56 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Debug|x64.ActiveCfg = Debug|Win32
57 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|Mixed Platforms.ActiveCfg = Release|Win32
58 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|Mixed Platforms.Build.0 = Release|Win32
59 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|Win32.ActiveCfg = Release|Win32
60 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|Win32.Build.0 = Release|Win32
61 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|x64.ActiveCfg = Release|x64
62 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|x64.Build.0 = Release|x64
63 | 		{8EB9E40F-F3CD-469E-83FF-78C7FB2E6DBE}.Release|x64.Deploy.0 = Release|x64
64 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
65 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|Mixed Platforms.Build.0 = Debug|Win32
66 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|Win32.ActiveCfg = Debug|Win32
67 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|Win32.Build.0 = Debug|Win32
68 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|x64.ActiveCfg = Debug|x64
69 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Debug|x64.Build.0 = Debug|x64
70 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|Mixed Platforms.ActiveCfg = Release|Win32
71 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|Mixed Platforms.Build.0 = Release|Win32
72 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|Win32.ActiveCfg = Release|Win32
73 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|Win32.Build.0 = Release|Win32
74 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|Win32.Deploy.0 = Release|Win32
75 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|x64.ActiveCfg = Release|x64
76 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|x64.Build.0 = Release|x64
77 | 		{444C9878-7D1A-4028-8416-3C7D8672FDEB}.Release|x64.Deploy.0 = Release|x64
78 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
79 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|Mixed Platforms.Build.0 = Debug|Win32
80 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|Win32.ActiveCfg = Debug|Win32
81 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|Win32.Build.0 = Debug|Win32
82 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|x64.ActiveCfg = Debug|x64
83 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Debug|x64.Build.0 = Debug|x64
84 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|Mixed Platforms.ActiveCfg = Release|Win32
85 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|Mixed Platforms.Build.0 = Release|Win32
86 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|Win32.ActiveCfg = Release|Win32
87 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|Win32.Build.0 = Release|Win32
88 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|x64.ActiveCfg = Release|x64
89 | 		{8F56699B-2357-48BC-A739-D831F3421C97}.Release|x64.Build.0 = Release|x64
90 | 	EndGlobalSection
91 | 	GlobalSection(SolutionProperties) = preSolution
92 | 		HideSolutionNode = FALSE
93 | 	EndGlobalSection
94 | EndGlobal
95 | 


--------------------------------------------------------------------------------
/cc_shellcode.v12.suo:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/k33nteam/cc-shellcoding/HEAD/cc_shellcode.v12.suo


--------------------------------------------------------------------------------
/cc_shellcode/cc_shellcode.vcxproj:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="utf-8"?>
  2 | <Project DefaultTargets="Build" ToolsVersion="12.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
  3 |   <ItemGroup Label="ProjectConfigurations">
  4 |     <ProjectConfiguration Include="Debug|Win32">
  5 |       <Configuration>Debug</Configuration>
  6 |       <Platform>Win32</Platform>
  7 |     </ProjectConfiguration>
  8 |     <ProjectConfiguration Include="Debug|x64">
  9 |       <Configuration>Debug</Configuration>
 10 |       <Platform>x64</Platform>
 11 |     </ProjectConfiguration>
 12 |     <ProjectConfiguration Include="Release|Win32">
 13 |       <Configuration>Release</Configuration>
 14 |       <Platform>Win32</Platform>
 15 |     </ProjectConfiguration>
 16 |     <ProjectConfiguration Include="Release|x64">
 17 |       <Configuration>Release</Configuration>
 18 |       <Platform>x64</Platform>
 19 |     </ProjectConfiguration>
 20 |   </ItemGroup>
 21 |   <PropertyGroup Label="Globals">
 22 |     <ProjectGuid>{A24AE05E-430D-4699-8141-4C37E761DA12}</ProjectGuid>
 23 |     <Keyword>Win32Proj</Keyword>
 24 |     <RootNamespace>cc_shellcode</RootNamespace>
 25 |   </PropertyGroup>
 26 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
 27 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
 28 |     <ConfigurationType>Application</ConfigurationType>
 29 |     <UseDebugLibraries>true</UseDebugLibraries>
 30 |     <PlatformToolset>v120</PlatformToolset>
 31 |     <CharacterSet>Unicode</CharacterSet>
 32 |   </PropertyGroup>
 33 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
 34 |     <ConfigurationType>Application</ConfigurationType>
 35 |     <UseDebugLibraries>true</UseDebugLibraries>
 36 |     <PlatformToolset>v120</PlatformToolset>
 37 |     <CharacterSet>Unicode</CharacterSet>
 38 |   </PropertyGroup>
 39 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
 40 |     <ConfigurationType>Application</ConfigurationType>
 41 |     <UseDebugLibraries>false</UseDebugLibraries>
 42 |     <PlatformToolset>v120_xp</PlatformToolset>
 43 |     <WholeProgramOptimization>true</WholeProgramOptimization>
 44 |     <CharacterSet>Unicode</CharacterSet>
 45 |     <UseOfMfc>Static</UseOfMfc>
 46 |   </PropertyGroup>
 47 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
 48 |     <ConfigurationType>Application</ConfigurationType>
 49 |     <UseDebugLibraries>false</UseDebugLibraries>
 50 |     <PlatformToolset>v120</PlatformToolset>
 51 |     <WholeProgramOptimization>true</WholeProgramOptimization>
 52 |     <CharacterSet>Unicode</CharacterSet>
 53 |   </PropertyGroup>
 54 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
 55 |   <ImportGroup Label="ExtensionSettings">
 56 |     <Import Project="$(VCTargetsPath)\BuildCustomizations\masm.props" />
 57 |   </ImportGroup>
 58 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 59 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 60 |   </ImportGroup>
 61 |   <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="PropertySheets">
 62 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 63 |   </ImportGroup>
 64 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 65 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 66 |   </ImportGroup>
 67 |   <ImportGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="PropertySheets">
 68 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 69 |   </ImportGroup>
 70 |   <PropertyGroup Label="UserMacros" />
 71 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 72 |     <LinkIncremental>true</LinkIncremental>
 73 |   </PropertyGroup>
 74 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
 75 |     <LinkIncremental>true</LinkIncremental>
 76 |   </PropertyGroup>
 77 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 78 |     <LinkIncremental>false</LinkIncremental>
 79 |     <GenerateManifest>false</GenerateManifest>
 80 |     <OutDir>$(SolutionDir)/out/</OutDir>
 81 |   </PropertyGroup>
 82 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
 83 |     <LinkIncremental>false</LinkIncremental>
 84 |     <EmbedManifest>false</EmbedManifest>
 85 |     <GenerateManifest>false</GenerateManifest>
 86 |     <TargetExt>.exe</TargetExt>
 87 |   </PropertyGroup>
 88 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 89 |     <ClCompile>
 90 |       <PrecompiledHeader>
 91 |       </PrecompiledHeader>
 92 |       <WarningLevel>Level3</WarningLevel>
 93 |       <Optimization>Disabled</Optimization>
 94 |       <PreprocessorDefinitions>WIN32;_DEBUG;_CONSOLE;_LIB;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 95 |       <SDLCheck>true</SDLCheck>
 96 |     </ClCompile>
 97 |     <Link>
 98 |       <SubSystem>Console</SubSystem>
 99 |       <GenerateDebugInformation>true</GenerateDebugInformation>
100 |     </Link>
101 |   </ItemDefinitionGroup>
102 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
103 |     <ClCompile>
104 |       <PrecompiledHeader>
105 |       </PrecompiledHeader>
106 |       <WarningLevel>Level3</WarningLevel>
107 |       <Optimization>Disabled</Optimization>
108 |       <PreprocessorDefinitions>WIN32;_DEBUG;_CONSOLE;_LIB;%(PreprocessorDefinitions)</PreprocessorDefinitions>
109 |       <SDLCheck>true</SDLCheck>
110 |     </ClCompile>
111 |     <Link>
112 |       <SubSystem>Console</SubSystem>
113 |       <GenerateDebugInformation>true</GenerateDebugInformation>
114 |     </Link>
115 |   </ItemDefinitionGroup>
116 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
117 |     <ClCompile>
118 |       <WarningLevel>Level3</WarningLevel>
119 |       <PrecompiledHeader>
120 |       </PrecompiledHeader>
121 |       <Optimization>MinSpace</Optimization>
122 |       <FunctionLevelLinking>true</FunctionLevelLinking>
123 |       <IntrinsicFunctions>true</IntrinsicFunctions>
124 |       <PreprocessorDefinitions>WIN32;NDEBUG;_CONSOLE;_LIB;%(PreprocessorDefinitions)</PreprocessorDefinitions>
125 |       <SDLCheck>true</SDLCheck>
126 |       <AdditionalIncludeDirectories>$(WindowsSDKDir)\Include\um\;$(WindowsSDKDir)\Include\shared\;$(SolutionDir);%(AdditionalIncludeDirectories);$(SolutionDir)/boost/libs/integer/include;$(SolutionDir)/boost/libs/functional/include;$(SolutionDir)/boost/libs/detail/include;$(SolutionDir)/boost/libs/move/include;$(SolutionDir)/boost/libs/intrusive/include;$(SolutionDir)/boost/libs/static_assert/include;$(SolutionDir)/boost/libs/preprocessor/include;$(SolutionDir)/boost/libs/mpl/include;$(SolutionDir)/boost/libs/type_traits/include;$(SolutionDir)/boost/libs/exception/include;$(SolutionDir)/boost/libs/utility/include;$(SolutionDir)/boost/libs/config/include;$(SolutionDir)/boost/libs/assert/include;$(SolutionDir)/boost/libs/smart_ptr/include;$(SolutionDir)/boost/</AdditionalIncludeDirectories>
127 |       <CompileAsManaged>false</CompileAsManaged>
128 |       <FavorSizeOrSpeed>Size</FavorSizeOrSpeed>
129 |       <ExceptionHandling>false</ExceptionHandling>
130 |       <BufferSecurityCheck>false</BufferSecurityCheck>
131 |       <EnableEnhancedInstructionSet>StreamingSIMDExtensions2</EnableEnhancedInstructionSet>
132 |       <FloatingPointExceptions>false</FloatingPointExceptions>
133 |       <CreateHotpatchableImage>false</CreateHotpatchableImage>
134 |       <RuntimeTypeInfo>false</RuntimeTypeInfo>
135 |       <PrecompiledHeaderFile />
136 |       <WholeProgramOptimization>false</WholeProgramOptimization>
137 |       <RuntimeLibrary>MultiThreaded</RuntimeLibrary>
138 |       <DisableLanguageExtensions>false</DisableLanguageExtensions>
139 |       <CallingConvention>StdCall</CallingConvention>
140 |       <StructMemberAlignment>Default</StructMemberAlignment>
141 |     </ClCompile>
142 |     <Link>
143 |       <SubSystem>Console</SubSystem>
144 |       <GenerateDebugInformation>true</GenerateDebugInformation>
145 |       <EnableCOMDATFolding>true</EnableCOMDATFolding>
146 |       <OptimizeReferences>true</OptimizeReferences>
147 |       <IgnoreAllDefaultLibraries>true</IgnoreAllDefaultLibraries>
148 |       <IgnoreSpecificDefaultLibraries>libcmt.lib; mscvrt.lib</IgnoreSpecificDefaultLibraries>
149 |       <EntryPointSymbol>Main</EntryPointSymbol>
150 |       <ManifestFile />
151 |       <FixedBaseAddress>false</FixedBaseAddress>
152 |       <SectionAlignment>4096</SectionAlignment>
153 |       <ImageHasSafeExceptionHandlers>false</ImageHasSafeExceptionHandlers>
154 |       <AdditionalLibraryDirectories>$(SolutionDir)cve\$(Configuration)\;</AdditionalLibraryDirectories>
155 |       <AdditionalDependencies>$(SolutionDir)loader\$(Configuration)\usr_imports.obj;Gate.obj;Door.obj;$(WindowsSDKDir)\Lib\winv6.3\km\x86\libcntpr.lib;</AdditionalDependencies>
156 |       <EnableUAC>false</EnableUAC>
157 |       <CLRUnmanagedCodeCheck>false</CLRUnmanagedCodeCheck>
158 |       <ModuleDefinitionFile>$(SolutionDir)imports.def</ModuleDefinitionFile>
159 |       <AdditionalOptions>/FILEALIGN:4096 %(AdditionalOptions)</AdditionalOptions>
160 |     </Link>
161 |   </ItemDefinitionGroup>
162 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
163 |     <ClCompile>
164 |       <WarningLevel>Level3</WarningLevel>
165 |       <PrecompiledHeader>
166 |       </PrecompiledHeader>
167 |       <Optimization>MinSpace</Optimization>
168 |       <FunctionLevelLinking>true</FunctionLevelLinking>
169 |       <IntrinsicFunctions>true</IntrinsicFunctions>
170 |       <PreprocessorDefinitions>_WIN64;_AMD64_;AMD64;NDEBUG;_CONSOLE;_LIB;%(PreprocessorDefinitions)</PreprocessorDefinitions>
171 |       <SDLCheck>true</SDLCheck>
172 |       <AdditionalIncludeDirectories>$(SolutionDir);$(WindowsSDKDir)\include\km\;%(AdditionalIncludeDirectories);$(SolutionDir)/boost/libs/integer/include;$(SolutionDir)/boost/libs/functional/include;$(SolutionDir)/boost/libs/detail/include;$(SolutionDir)/boost/libs/move/include;$(SolutionDir)/boost/libs/intrusive/include;$(SolutionDir)/boost/libs/static_assert/include;$(SolutionDir)/boost/libs/preprocessor/include;$(SolutionDir)/boost/libs/mpl/include;$(SolutionDir)/boost/libs/type_traits/include;$(SolutionDir)/boost/libs/exception/include;$(SolutionDir)/boost/libs/utility/include;$(SolutionDir)/boost/libs/config/include;$(SolutionDir)/boost/libs/assert/include;$(SolutionDir)/boost/libs/smart_ptr/include;$(SolutionDir)/boost/;</AdditionalIncludeDirectories>
173 |       <CompileAsManaged>false</CompileAsManaged>
174 |       <BufferSecurityCheck>false</BufferSecurityCheck>
175 |       <CallingConvention>FastCall</CallingConvention>
176 |       <ExceptionHandling>false</ExceptionHandling>
177 |       <RuntimeTypeInfo>false</RuntimeTypeInfo>
178 |       <FavorSizeOrSpeed>Size</FavorSizeOrSpeed>
179 |       <WholeProgramOptimization>false</WholeProgramOptimization>
180 |       <BasicRuntimeChecks />
181 |       <EnableEnhancedInstructionSet>NotSet</EnableEnhancedInstructionSet>
182 |       <FloatingPointExceptions>true</FloatingPointExceptions>
183 |       <CreateHotpatchableImage>false</CreateHotpatchableImage>
184 |       <RuntimeLibrary>MultiThreaded</RuntimeLibrary>
185 |       <PrecompiledHeaderFile />
186 |       <TreatWarningAsError>false</TreatWarningAsError>
187 |       <EnableFiberSafeOptimizations>true</EnableFiberSafeOptimizations>
188 |       <SmallerTypeCheck>false</SmallerTypeCheck>
189 |     </ClCompile>
190 |     <Link>
191 |       <SubSystem>Console</SubSystem>
192 |       <GenerateDebugInformation>true</GenerateDebugInformation>
193 |       <EnableCOMDATFolding>true</EnableCOMDATFolding>
194 |       <OptimizeReferences>true</OptimizeReferences>
195 |       <EntryPointSymbol>Main</EntryPointSymbol>
196 |       <IgnoreAllDefaultLibraries>true</IgnoreAllDefaultLibraries>
197 |       <IgnoreSpecificDefaultLibraries>libcmt.lib; msvcrt.lib</IgnoreSpecificDefaultLibraries>
198 |       <AdditionalDependencies>Gate.obj;Door.obj;</AdditionalDependencies>
199 |       <AdditionalLibraryDirectories>$(SolutionDir)/loader/$(Platform)/$(Configuration)/;$(SolutionDir)/cve/$(Platform)/$(Configuration)/;$(SolutionDir)</AdditionalLibraryDirectories>
200 |       <ManifestFile />
201 |       <CLRThreadAttribute>DefaultThreadingAttribute</CLRThreadAttribute>
202 |       <CLRImageType />
203 |       <CLRUnmanagedCodeCheck>false</CLRUnmanagedCodeCheck>
204 |       <ImageHasSafeExceptionHandlers>false</ImageHasSafeExceptionHandlers>
205 |       <SectionAlignment>64</SectionAlignment>
206 |       <ModuleDefinitionFile>
207 |       </ModuleDefinitionFile>
208 |       <TreatLinkerWarningAsErrors>false</TreatLinkerWarningAsErrors>
209 |     </Link>
210 |   </ItemDefinitionGroup>
211 |   <ItemGroup>
212 |     <ClCompile Include="src\main.cpp" />
213 |   </ItemGroup>
214 |   <ItemGroup>
215 |     <ProjectReference Include="..\CVE\CVE.vcxproj">
216 |       <Project>{444c9878-7d1a-4028-8416-3c7d8672fdeb}</Project>
217 |     </ProjectReference>
218 |     <ProjectReference Include="..\libc\libc.vcxproj">
219 |       <Project>{6b090b01-76a1-4521-902d-6011fe9aa4ed}</Project>
220 |     </ProjectReference>
221 |     <ProjectReference Include="..\loader\loader.vcxproj">
222 |       <Project>{8eb9e40f-f3cd-469e-83ff-78c7fb2e6dbe}</Project>
223 |     </ProjectReference>
224 |   </ItemGroup>
225 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
226 |   <ImportGroup Label="ExtensionTargets">
227 |     <Import Project="$(VCTargetsPath)\BuildCustomizations\masm.targets" />
228 |   </ImportGroup>
229 | </Project>


--------------------------------------------------------------------------------
/cc_shellcode/cc_shellcode.vcxproj.filters:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
 3 |   <ItemGroup>
 4 |     <Filter Include="Source Files">
 5 |       <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
 6 |       <Extensions>cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
 7 |     </Filter>
 8 |     <Filter Include="Header Files">
 9 |       <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
10 |       <Extensions>h;hh;hpp;hxx;hm;inl;inc;xsd</Extensions>
11 |     </Filter>
12 |     <Filter Include="Resource Files">
13 |       <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
14 |       <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
15 |     </Filter>
16 |   </ItemGroup>
17 |   <ItemGroup>
18 |     <ClCompile Include="src\main.cpp">
19 |       <Filter>Source Files</Filter>
20 |     </ClCompile>
21 |   </ItemGroup>
22 | </Project>


--------------------------------------------------------------------------------
/cc_shellcode/cc_shellcode.vcxproj.user:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="utf-8"?>
2 | <Project ToolsVersion="12.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
3 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
4 |     <SignMode>TestSign</SignMode>
5 |     <TestCertificate>CN="WDKTestCert zer0mem,130478420001425861" | CE6D60774354F593A55495B6DDA6BAC1EA809F2F</TestCertificate>
6 |   </PropertyGroup>
7 | </Project>


--------------------------------------------------------------------------------
/cc_shellcode/src/main.cpp:
--------------------------------------------------------------------------------
 1 | #include <stdio.h>
 2 | #include <memory>
 3 | 
 4 | #define USER
 5 | 
 6 | #ifdef USER
 7 | #include <windows.h>
 8 | #include <loader/src/user/libc.cpp>
 9 | #include <loader/src/user/UserModule.hpp>
10 | #else
11 | #include <ntifs.h>
12 | #include <loader/src/kernel/libc.cpp>
13 | #include <loader/src/kernel/KernelModule.hpp>
14 | #endif
15 | 
16 | #include <loader/src/Loader.hpp>
17 | 
18 | #include <stdlib.h>
19 | 
20 | //all final compilation settings are set in this lib
21 | //code it is just wrapper to your custom Project (CVE) which exports exploit function!
22 | 
23 | #include <CVE/src/main.cpp>
24 | 
25 | bool
26 | main()
27 | {
28 | 	exploit();
29 | 	return true;
30 | };
31 | 


--------------------------------------------------------------------------------
/imports.def:
--------------------------------------------------------------------------------
 1 | EXPORTS
 2 | _ZwQuerySystemInformation@16
 3 | DbgPrint
 4 | _RtlInitUnicodeString@8
 5 | _IoQueueWorkItem@16
 6 | _IoGetDeviceObjectPointer@16
 7 | _IoFreeWorkItem@4
 8 | _IoDetachDevice@4
 9 | _IoAllocateWorkItem@4
10 | @ObfReferenceObject@4
11 | @ObfDereferenceObject@4
12 | @IofCallDriver@8
13 | _ExFreePoolWithTag@8
14 | _ExAllocatePoolWithTag@12
15 | _stricmp
16 | 
17 | _vsnprintf
18 | _RtlUnicodeToMultiByteN@20
19 | _RtlRaiseException@4
20 | _OutputDebugStringA@4
21 | _HeapReAlloc@16
22 | _HeapFree@12
23 | _HeapAlloc@12
24 | _GetProcessHeap@0
25 | _GetModuleHandleW@4
26 | _GetCommandLineW@0
27 | _strnicmp
28 | 


--------------------------------------------------------------------------------