Created
November 8, 2022 19:39
-
-
Save nasbench/e34ca2cd90e3a845a558a102a4f607da to your computer and use it in GitHub Desktop.
Adplus LOLBIN Config Sample
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ADPlus Version='2'> | |
| <Settings> | |
| <Option> FullOnFirst </Option> | |
| <Runmode> Hang </Runmode> | |
| <!-- | |
| If you want to run the binary and not dump anything. | |
| Then this can be any process as long as it's running | |
| --> | |
| <ProcessName> notepad.exe </ProcessName> | |
| <OutputDir>C:\temp\</OutputDir> | |
| </Settings> | |
| <PreCommands> | |
| <DebugActions>LoadedModules;Time</DebugActions> | |
| <!-- Insert Binary you want to launch--> | |
| <!-- You can also use the <Argument> tag to provide arguments --> | |
| <ShellSync> | |
| <Application> calc.exe </Application> | |
| </ShellSync> | |
| </PreCommands> | |
| </ADPlus> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment