Howdy,
Working on the Pro version of Shellter has been proved already as a good opportunity to re-visit some code and perform even more tests on it.
Shellter Pro is pushing the existing features to their limits. This makes it easier to find some well hidden bugs and finally fix them in both builds.
You can read more about my two latest discoveries here and here.
Shellter VI [6.5] is coming up…
Cheers,
kyREcon
This is a silly bug caused by a typo which makes the command line parser to not recognize the embedded “shell_bind_tcp” payload stager when this is specified from the command line using the ‘-p’ switch.
Fix is due to be included in Shellter v6.5.
Cheers,
kyREcon
There is a logic bug that can occasionally be triggered when injecting code in some PE files while using the GetModuleHandle/GetProcAddress IAT handler.
In that case, Shellter may use the unicode version of GetModuleHandle with an IAT Handler stub dedicated for the Ascii input version version of it.
This will cause the infected application to crash without executing the injected payload.
Fix is due to be included in Shellter v6.5.
Cheers,
kyREcon