Packers & Obfuscators
If shellcode loaders are detected, try packing compiled executables.
Tools to explore:
- Donut — creates position-independent shellcode from EXE/DLL/.NET assemblies
- Macro_pack — https://github.com/sevagas/macro_pack
- Inceptor — https://github.com/klezVirus/inceptor
- GadgetToJScript — https://github.com/med0x2e/GadgetToJScript
See also: Generation & Encoding, Chimera