-
Notifications
You must be signed in to change notification settings - Fork 651
Usage
TheWover edited this page Apr 1, 2019
·
2 revisions
- Run donut.exe on your .NET Assembly to generate the cfg file that contains the config and the encrypted Assembly.
- Run xbin.exe to create the .bin file that has the PIC. Specify what section?
- Run inject.exe, providing the bin file and the cfg file.
The CFG file contains the configuration, the bin file contains the PIC.
donut can create shellcode payloads from arbitrary .NET Assemblies.
Command-Line Usage: donut.exe AssemblyFilePath ClassName MethodName arg
If the entry point does is within a namespace, then use the format of Namespace.ClassName. Otherwise, just the class name will work.
donut currently only supports using one argument as a string. We will work on allowing n arguments.
When donut creates the shellcode, it outputs the result to donut.cfg. It also tests the shellcode by executing it in a new thread and waiting for it to exit. We will add a flag to make this optional so that you don't infect your own machine. ;-)
inject /pic spoolsv.exe donut.bin donut.cfg