Converting your GO bins to Shellcode and Using them in C#

How to convert binaries compiled in golang to shellcode

With release of Go1.15 a new "buildmode" flag has been released. -buildmode=pie

Lets do a simple demo of converting a go binary to shellcode and injecting it to other processes

Building Go Binary

I am going to build a simple golang program which launches calc

calc.go
package main
import(
"fmt"
"os/exec"
)
func main(){
c := exec.Command("calc.exe")
if err := c.Run(); err != nil {
fmt.Println("Error: ", err)
}
}

Now lets build the program. I am using Windows 10 amd64 machine. You may need to specify other parameters if you are cross compiling

go build -buildmode=pie -o calc.exe calc.go

The command will generate a static binary calc.exe.

Converting Binary to Shellcode

Here we will use TheWover's Donut to convert the calc.exe to shellcode. The command is quite simple

donut.exe calc.exe -o calc.bin

Using DonutTest

DonutTest is a subproject of Donut repo. DonutTest provides a test harness to test your generated Shellcode.

To use our calc.bin inside donut test we need to convert it into base64

[Convert]::ToBase64String([IO.File]::ReadAllBytes("./calc.bin")) | clip

Now paste the shellcode in DonutTest and compile. Your program should run as expected and you should see a calc pop

DonutTest.exe <pid>

Credits:

https://twitter.com/rkervell