2018-07-23 08:55:15 +00:00
|
|
|
#!/usr/bin/env python
|
2019-04-24 17:18:30 +00:00
|
|
|
import os
|
2018-12-14 01:39:24 +00:00
|
|
|
from UrlConfig import UrlConfig
|
|
|
|
|
2019-01-03 22:18:11 +00:00
|
|
|
HOST_NAME = '0.0.0.0'
|
2019-03-12 13:10:24 +00:00
|
|
|
PORT_NUMBER = 443 # This is the bind port
|
2018-07-23 08:55:15 +00:00
|
|
|
|
2019-01-03 22:18:11 +00:00
|
|
|
POSHDIR = "/opt/PoshC2_Python/"
|
|
|
|
ROOTDIR = "/opt/PoshC2_Project/"
|
2019-04-30 14:19:25 +00:00
|
|
|
HostnameIP = "https://193.36.15.234"
|
2018-07-23 08:55:15 +00:00
|
|
|
DomainFrontHeader = "" # example df.azureedge.net
|
2019-02-12 21:33:46 +00:00
|
|
|
DefaultSleep = "5s"
|
2019-04-02 08:46:14 +00:00
|
|
|
Jitter = 0.20
|
2018-07-23 08:55:15 +00:00
|
|
|
KillDate = "08/06/2019"
|
2019-01-03 22:12:39 +00:00
|
|
|
UserAgent = "Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; Touch; rv:11.0) like Gecko"
|
2019-01-03 22:27:39 +00:00
|
|
|
urlConfig = UrlConfig("%soldurls.txt" % POSHDIR) # Instantiate UrlConfig object - old urls using a list from a text file
|
2019-01-09 22:27:44 +00:00
|
|
|
#urlConfig = UrlConfig(wordList="%swordlist.txt" % POSHDIR) # Instantiate UrlConfig object - wordlist random url generator
|
2018-12-14 02:08:22 +00:00
|
|
|
QuickCommand = urlConfig.fetchQCUrl()
|
2018-12-14 01:39:24 +00:00
|
|
|
DownloadURI = urlConfig.fetchConnUrl()
|
2018-07-23 09:02:57 +00:00
|
|
|
Sounds = "No"
|
2019-03-12 13:10:24 +00:00
|
|
|
ServerPort = "443" # This the port the payload communicates with
|
2019-04-05 09:57:05 +00:00
|
|
|
NotificationsProjectName = "PoshC2"
|
2018-09-07 11:03:57 +00:00
|
|
|
EnableNotifications = "No"
|
2019-03-13 14:50:33 +00:00
|
|
|
DefaultMigrationProcess = "C:\\Windows\\system32\\netsh.exe" # Used in the PoshXX_migrate.exe payloads
|
2019-01-03 22:12:39 +00:00
|
|
|
|
2018-09-07 11:03:57 +00:00
|
|
|
# ClockworkSMS - https://www.clockworksms.com
|
2019-01-03 22:18:11 +00:00
|
|
|
APIKEY = ""
|
|
|
|
MobileNumber = '"07777777777","07777777777"'
|
2019-01-03 22:12:39 +00:00
|
|
|
|
2018-09-07 11:03:57 +00:00
|
|
|
# Pushover - https://pushover.net/
|
2019-01-03 22:18:11 +00:00
|
|
|
APIToken = ""
|
|
|
|
APIUser = ""
|
2018-12-14 01:39:24 +00:00
|
|
|
URLS = urlConfig.fetchUrls()
|
|
|
|
SocksURLS = urlConfig.fetchSocks()
|
2019-03-11 19:43:29 +00:00
|
|
|
Referrer = "" # optional
|
2018-07-23 08:55:15 +00:00
|
|
|
HTTPResponse = """<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
|
|
|
|
<html><head>
|
|
|
|
<title>404 Not Found</title>
|
|
|
|
</head><body>
|
|
|
|
<h1>Not Found</h1>
|
|
|
|
<p>The requested URL was not found on this server.</p>
|
|
|
|
<hr>
|
|
|
|
<address>Apache (Debian) Server</address>
|
|
|
|
</body></html>
|
|
|
|
"""
|
|
|
|
HTTPResponses = [
|
|
|
|
"STATUS 200",
|
|
|
|
"OK",
|
|
|
|
"<html><head></head><body>#RANDOMDATA#</body></html>",
|
|
|
|
"<html><body>#RANDOMDATA#</body></html>",
|
|
|
|
"""<?xml version="1.0" encoding="UTF-8"?>
|
|
|
|
<heading>#RANDOMDATA#</heading>
|
|
|
|
<body>#RANDOMDATA#</body>""",
|
|
|
|
"<html><head>#RANDOMDATA#</head><body><div>#RANDOMDATA#</div></body></html>"
|
|
|
|
]
|
|
|
|
ServerHeader = "Apache"
|
|
|
|
Insecure = "[System.Net.ServicePointManager]::ServerCertificateValidationCallback = {$true}"
|
|
|
|
|
|
|
|
# DO NOT CHANGE #
|
2019-04-24 17:18:30 +00:00
|
|
|
FilesDirectory = "%sFiles%s" % (POSHDIR, os.sep)
|
|
|
|
PayloadsDirectory = "%spayloads%s" % (ROOTDIR, os.sep)
|
|
|
|
ModulesDirectory = "%sModules%s" % (POSHDIR, os.sep)
|
|
|
|
DownloadsDirectory = "%sdownloads%s" % (ROOTDIR, os.sep)
|
|
|
|
ReportsDirectory = "%sreports%s" % (ROOTDIR, os.sep)
|
|
|
|
Database = "%s%sPowershellC2.SQLite" % (ROOTDIR, os.sep)
|
2018-07-23 08:55:15 +00:00
|
|
|
|
|
|
|
# DO NOT CHANGE #
|
2019-01-03 22:12:39 +00:00
|
|
|
# These rules aren't needed as you'll find them auto-generated within the project folder now.
|
2018-12-14 01:39:24 +00:00
|
|
|
# checkout <project-name>/rewrite-rules.txt but left them here just in case.
|