Windows Shellcoding x86 – Calling Functions in Kernel32.dll – Part 2

Due to unforeseen circumstances, all the blogs are moved to our new site . And all upcoming blogs will be posted there henceforth.

-Paranoid Ninja

|| OSCP || Malware Analyst/Researcher || Antivirus Evader || Threat Hunter || Martial Artist ||

Tags: , , ,


  1. I think it’s worth to say, that ‘xor ebx, ebx’ is needed before findproc routine starts.

    Besides that, great article! Great that you are covering modern OS-es, as many other resources are no longer compatible with Win 10. 🙂

  2. Jaw-dropping waltkthrough. Impressively detailed explanation and navigation through this spiderweb of RVA. In my case EBX had to zeroed before entering findproc because it had some garbage causing access violation exceptions. Astonishing work, thanks for sharing this knowledge!!

Leave a Reply

Your email address will not be published. Required fields are marked *