aryma/Ares-mythic
1
0
Fork 0
mirror of https://github.com/Aryma-f4/Ares-mythic.git synced 2026-06-12 20:34:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
b88b3a218456c39e6473c906213df5b3d2b565c1
Ares-mythic/documentation-payload/ares/opsec/forkandrun.md
Aryma 03d283cf49 refactor(payload): rename apollo to ares and update documentation 
This commit renames the Apollo payload type to Ares, moving all associated files and updating documentation accordingly. The change includes:
- Renaming directories from `apollo` to `ares`
- Updating documentation image references
- Maintaining the same code functionality while changing the payload name
- Adding new Ares-specific documentation files
- Removing old Apollo documentation files

The rename is done to reflect the new payload name while preserving all existing functionality.
2026-04-14 14:02:44 +07:00

1.2 KiB
Raw Blame History

+++ title = "Fork and Run Commands" chapter = false weight = 102 +++

What is Fork and Run?

"Fork and Run" is an agent architecture that spawns sacrificial processes in a suspended state to inject shellcode into.

Fork and Run in Ares

Ares uses the fork and run architecture for a variety of jobs. These jobs will all first spawn a new process specified by the spawnto_x86 or spawnto_x64 commands. The parent process of these new processes is specified by the ppid command. Once the process is spawned, Apollo will use the currently set injection technique to inject into the remote process.

The following commands use the fork and run architecture:

Reference in New Issue View Git Blame Copy Permalink