Windows/x86 Locate kernel32 Base Address / Stack Crack Method Null Free Shellcode

Discussion in 'News Aggregator' started by Packet Storm, 9 Feb 2022.

  1. Packet Storm

    Packet Storm Guest

    171 bytes small Windows/x86 shellcode with a new method to find the kernel32 base address by walking down the stack and look for a possible Kernel32 address using a custom SEH handler. Each address found on the stack will be tested using the Exception handling function. If it's valid and starts with 7, then it's a possible kernel32 address.

    Continue reading...
     

Share This Page

Loading...