qwqdanchun
/
RunPE
mirror of https://github.com/qwqdanchun/RunPE.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2 Commits 1 Branch 1 Tag 48 KiB
C# 100%
Go to file
m0rv4i 2330e16782
Add GitHub actions workflow 		2021-06-25 13:06:18 +01:00
.github/workflows Add GitHub actions workflow 2021-06-25 13:06:18 +01:00
.vscode Initial commit 2021-06-25 12:54:17 +01:00
RunPE Initial commit 2021-06-25 12:54:17 +01:00
.gitignore Initial commit 2021-06-25 12:54:17 +01:00
README.md Initial commit 2021-06-25 12:54:17 +01:00
RunPE.sln Initial commit 2021-06-25 12:54:17 +01:00

README.md

RunPE

C# Reflective loader for unmanaged binaries.

Usage

Usage: RunPE.exe <file-to-run> <args-to-file-to-run>
        e.g. RunPE.exe C:\Windows\System32\net.exe localgroup administrators

Alternative usage: RunPE.exe ---f <file-to-pretend-to-be> ---b <base64 blob of file bytes> ---a <base64 blob of args>
        e.g: RunPE.exe ---f C:\Windows\System32\svchost.exe ---b <net.exe, base64 encoded> ---a <localgroup administrators, base64 encoded>

Build configuration options

Edit the compilation symbols to quickly adjust the program flow: (Right click the project in Visual Studio -> Properties -> Build -> Conditional Compilation Symbols)

  • DEBUG (automatically added in Debug release mode) -> Very verbose logging
  • BREAK_TO_ATTACH -> Print "Press Enter to continue..." and await input so can attach debugger
  • LOG_TO_FILE -> Log the RunPE output to a file in C:\Users\Public instead of to the console