infosecn1nja
/
Malleable-C2-Profiles
mirror of https://github.com/infosecn1nja/Malleable-C2-Profiles.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update slack.profile

master
xx0hcd 2018-05-09 14:41:16 -05:00 committed by GitHub
parent 085f0767a9
commit 5b734be683
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
normal/slack.profile
View File

@ -191,13 +191,14 @@ http-stager {
} }
###new 3.11 stage options### ###Malleable PE Options###
#If you havent watched the videos/tested then probably comment out the 'set_module_xx' part. #Using some of the new 3.11 options.
#https://blog.cobaltstrike.com/2018/04/09/cobalt-strike-3-11-the-snake-that-eats-its-tail/ #https://blog.cobaltstrike.com/2018/04/09/cobalt-strike-3-11-the-snake-that-eats-its-tail/
#https://blog.cobaltstrike.com/2018/04/23/fighting-the-toolset/ #https://blog.cobaltstrike.com/2018/04/23/fighting-the-toolset/
set spawnto_x86 "%windir%\\syswow64\\spoolsv.exe";
set spawnto_x64 "%windir%\\sysnative\\spoolsv.exe";
#used peclone on wwanmm.dll. #used peclone on wwanmm.dll.
#don't use 'set image_size_xx' if using 'set module_xx' #don't use 'set image_size_xx' if using 'set module_xx'
@ -207,7 +208,7 @@ stage {
set entry_point "170000"; set entry_point "170000";
# set image_size_x86 "6586368"; # set image_size_x86 "6586368";
# set image_size_x64 "6586368"; # set image_size_x64 "6586368";
set name "WWanMM.dll"; # set name "WWanMM.dll";
set userwx "false"; set userwx "false";
set cleanup "true"; set cleanup "true";
set stomppe "true"; set stomppe "true";