Tag Archives: Jektor

Jektor utility focuses on shellcode injection techniques to demonstrate methods that malware may use to execute shellcode on a victim system  Dynamically resolves API functions to evade IAT inclusion  Includes usage of undocumented NT Windows API functions  Supports local shellcode execution via CreateThread  Supports remote shellcode execution via CreateRemoteThread  Supports local shellcode injection via QueueUserAPC …

Continue reading “Jektor : A Windows User-Mode Shellcode Execution Tool That Demonstrates Various Techniques That Malware Uses”