omg-payloads/network_surveillance at master - omg-payloads - The Red Team

History

drapl0n 0981da652b uploading network_surveillance payload network_surveillance payload exfiltrates network connections, routing tables, interface statistics, masquerade connections, and multicast memberships.		2023-07-09 19:58:03 +05:30
..
README.md	uploading network_surveillance payload	2023-07-09 19:58:03 +05:30
payload.txt	uploading network_surveillance payload	2023-07-09 19:58:03 +05:30

README.md

About:

Title: network_surveillance
Description: network_surveillance payload exfiltrates network connections, routing tables, interface statistics, masquerade connections, and multicast memberships.
AUTHOR: drapl0n
Version: 1.0
Category: Exfiltaration
Target: Unix-like operating systems with systemd.
Attackmodes: HID.

network_surveillance: network_surveillance payload exfiltrates network connections, routing tables, interface statistics, masquerade connections, and multicast memberships.

Features:

Exfiltrates network connections, routing tables, interface statistics, masquerade connections, and multicast memberships.
Fully Persistent.
Waits for target to get online.
Transfers loot once target is online.
Oneliner payload.

Workflow:

Extracts network information.
Creating Loot transfer mechanism in targets system.
Creating local systemd service for persistence.
Executing Autotart mechanism.

Usage:

Run netcat listner on attacking machine: nc -lvp <port number> > <output_filename>
Example: `nc -lvp 4444 > network_surveillance.txt

Changes to be made:

Replace IP address(twice) 0.0.0.0 and Port Number 4444 on line 15.

Support me if you like my work:

https://twitter.com/drapl0n