Browse by type
-> A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Payloads can be retrieved directly from the file on disk or from the image stored in a binary's resources section (.rsrc)
FindResource and LockResource. hGetCurrentModuleHandle's unsafe backward header parsing with direct PEB access via __readgsqword/__readfsdword, resolving compiler-optimization crashes and supporting x86/x64. This new function has two alternatives, based on whether the project is a DLL or a EXE.PEB_Structs.h for portable PEB/PE definitions, eliminating dependencies on Windows headers.👉 Watch the full video demo here:
- Updated to include payload-extractor-from-resource-via-peb.cpp demo.
Enjoying my content? Show your support by sharing or starring the repo!
You can also support me on buy me a ko-fi to fuel more awesome content:
💬 Have feedback or ideas? I’d love to hear your thoughts or suggestions!
GetResourceData function is based on code from @NUL0x4C's AtomLdrMade with 💙 by @andrecrafts
$ claude mcp add hide-payload-in-images \
-- python -m otcore.mcp_server <graph>