Skip to content

Shared Library Stager for Linux

Jump to bottom Edit New page
Jimmy Mi edited this page Dec 24, 2024 · 1 revision

stager.so Overview

stager.so is a shared library designed to securely deliver the emp3r0r agent ELF executable and execute it covertly in memory. Here's how it works:

  1. Execution:
    The library creates a child process to load and execute the emp3r0r agent.

  2. Use Case:
    A common method is to load stager.so into existing processes such as Nginx, SSHD, etc., to avoid detection.

Customization Instructions

  1. Open ./loader/elf/stager.c and modify the following parameters:

    • HTTP Download Parameters: Update these to align with your deployment requirements.
    • AES Passphrase: Change this to a secure, unique passphrase.

  2. Compile the library:

    • Run make stager_so to generate the stager.so file.

  3. Deployment:

    • Use stager.so on Linux targets.
    • You'll need another stager to load the stager.so library into the desired process.
Add a custom footer
Add a custom sidebar
Clone this wiki locally