Skip to content
/ windoh Public

A proof of concept DNS-over-HTTPS client and shellcode injector

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pczinser/windoh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
windoh
windoh
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE.txt
LICENSE.txt
 
 
README.md
README.md
 
 
windoh.sln
windoh.sln
 
 

Repository files navigation

windoh

This is a PoC dropper for a payload obfuscation technique whereby the payload is stored in DNS A records. This program uses Win32 functions to make DNS-Over-HTTPS to a self hosted BIND9 server that has your payload staged as A records for the specified domain.

I have a BIND9 server hardcoded into the project currently with a msfvenom calc.exe payload staged as the A records for example.com. You can build this solution in releasee mode. Go through the prompts and a calc.exe window will pop up without any alerts on Windows Defender.

About

A proof of concept DNS-over-HTTPS client and shellcode injector

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages