From d1d6c2a56e6fb14fb884c0d5fad5fca344f1ee3b Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Tue, 1 Feb 2022 11:01:28 +0700
Subject: [PATCH] Add: Idov31/FunctionStomping to Defense Evasion

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 7e0ade2..c615359 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -1332,6 +1332,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/huntresslabs/evading-autoruns">huntresslabs/evading-autoruns</a></td>
         <td>Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/Idov31/FunctionStomping">Idov32/FunctionStomping</a></td>
+        <td>A new shellcode injection technique. Given as C++ header or standalone Rust program.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/infosecn1nja/MaliciousMacroMSBuild">infosecn1nja/MaliciousMacroMSBuild</a></td>
         <td>Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.</td>