To circumvent the security controls at the target, we will make use of custom encoding schemes, say XOR encoding, followed by one or two other encodings. Additionally, we will not use the conventional PE/COFF format and instead we will generate shellcode to work things around. Let's use msfvenom in a similar way as we did previously for the PE format. However, we will change the output format to C, as shown in the following screenshot:
Viewing the contents of the Sample.c file, we have the following:
Since we have the shellcode ready, we will build an encoder in C, which will XOR encode the ...