Demonstrating the code_inject tool

As we can see, our program injects and executes a shellcode that creates an executable memory mapping, where the payload program is then injected and executed:

Run the host program (the one that you want to infect):

ryan@elfmaster:~$ ./host &
[1] 29656
I am but a simple program, please don't infect me.

Run code_inject and tell it to inject the program named payload into the process for the host:

ryan@elfmaster:~$ ./code_inject `pidof host` payload
I am the payload who has hijacked your process!
[1]+ Done ./host

You may have noticed that there appears to be no traditional shellcode (byte code) in code_inject.c. That's because the uint64_t injection_code(void *) function is our shellcode. Since it is already compiled ...

Get Learning Linux Binary Analysis now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Learning Linux Binary Analysis by Ryan elfmaster O'Neill

Demonstrating the code_inject tool

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly