Shellcode Reflective DLL Injection

Introduction

Shellcode Reflective DLL Injection is a very common technique amongst popular C2 frameworks, Metasploit & Cobalt strike both utilize this technique in their payloads. In short; sRDI payloads consists of two parts, the reflective DLL loader shellcode and the DLL payload. In memory, a

The two main benefits of sRDI over RDI are:

The loader does not have to calculate an address to execute the payload.
The DLL payload can be any DLL file.

sRDI – Shellcode Reflective DLL Injection - NetSPINetSPI

sRDI

Compiling in Mingw

PreviousDLL Injection NextAPC Injection

Last updated 8 months ago