Skip to content

PoC of injecting code into a running Linux process

License

Notifications You must be signed in to change notification settings

narhen/procjack

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
 
 
 
 
 
 
 
 

Repository files navigation

procjack

PoC of injecting code into a running Linux process. Spawns a new thread to host the injected code.

Example

This will inject shellcode, contained in the count binary, into a running process 'dummy'.

$ cd src
$ make
$ ./dummy &
$ ./inject -p $(pidof dummy) -f ./count

Quick-n-dirty command to verify that a process is running multiple threads

$ ps -eLF | head -1; ps -eLF | grep -i dummy

Dependencies

  • Capstone (apt-get install libcapstone3 libcapstone-dev)