Commit Graph

51 Commits (76317f9ce692ac61e2a5e6a3210704c8f7db978e)

Author SHA1 Message Date
m0rv4i 76317f9ce6 Slim Shellcode & Shellcode_migrate
* Remove printf statements as there's no console so can't be seen (removes strings and printf stub reducing size)
* Remove redundant includes
* Exit if process injection fails in both cases
* Remove processId parameter from Shellcode.c as there's a while(1) sleep so we only want to inject into this process in this case
* Only create netsh process in Shellcode_migrate.c if a processId parameter is not passed
2019-03-13 10:32:39 +00:00
m0rv4i 31bf485ac7 Pull out payloads from Payloads.py; Add base64 encoded binary payload files; Fix whitespace issues that were triggering. 2019-03-12 20:33:45 +00:00
m0rv4i 87ad76d64c Imports sorted 2019-03-12 10:19:08 +00:00
benpturner 1b76ccfe57 Truncated large output in CSV/HTML to stop this being > 100MB. Re-added Parse-Mimikatz feature. Updated CS dropper to work on Server 2003 with .NET v4. 2019-03-07 09:34:19 +00:00
rolen 8a092df9d6
Use default credentials for the proxy if none provided
The UseDefaultCredentials on WebClient (if true) will send creds to the server if requested not the proxy. The Proxy object on WebClient is a IWebProxy which only has a Credentials member (yes could probably cast to WebProxy). This change will send the default creds to the default proxy server
2019-03-06 10:31:02 +00:00
benpturner e55e3df949 Moved Implant-Core.cs to dropper.cs in line with other changes 2019-02-20 16:25:53 +00:00
benpturner 2802fac07a Added * for High Integrity Process on C# and Powershell implants 2019-02-20 15:58:24 +00:00
m0rv4i d8fdb6c56c Move Beacon alias to Implant-Core as Beacon has been moved to Implant-Core 2019-02-12 22:36:20 +00:00
m0rv4i eda146be84 Actually fix beaconing and not just claim to have... 2019-02-12 22:02:09 +00:00
m0rv4i 20dd527367 Setting and viewing beacon time is now consistent across config and implant types - always 50s/10m/1h format 2019-02-12 21:33:46 +00:00
m0rv4i 82d676f69a Minor refactoring and update changelog 2019-02-12 17:34:37 +00:00
m0rv4i 9e4a464577 Refactoring and start to break up the dependency cycle 2019-02-11 21:00:56 +00:00
m0rv4i e16e73e629 Remove duplicate Module loaded message in C# and use prepared statements in DB 2019-02-11 17:19:54 +00:00
m0rv4i 2fea962466 * Refactor tasks to insert on run and update on complete
* Pull out py and ps cores into files
* Adjust command stored in DB to be user run command (tracking modules
loaded etc)
* Fixed downloading files so subsequent files with the same name will ba
name-1 name-2 etc
* Renamed Implant-Core.ps1 to Core.ps1 to match C#
2019-02-11 14:44:57 +00:00
rolen 1ef348e32c Revert "Revert "Merge branch 'master' of https://github.com/nettitude/PoshC2_Python""
This reverts commit 9f8b17f6a6.
2019-01-21 09:49:07 +00:00
rolen 9f8b17f6a6 Revert "Merge branch 'master' of https://github.com/nettitude/PoshC2_Python"
This reverts commit 7231d9026d, reversing
changes made to d352a8e6e7.
2019-01-21 09:47:35 +00:00
benpturner b68af33108 Updated modules 2019-01-20 20:27:28 +00:00
benpturner 7aa05baa3a Updated if statement in Sharp.cs 2019-01-11 18:01:56 +00:00
benpturner ec4642bb14 Updated run-exe 2019-01-10 09:24:16 +00:00
benpturner 416ebda177 Removed the writeline for Run-dll/Run-exe 2019-01-10 09:20:12 +00:00
benpturner 5072457487 Updated run-dll 2019-01-09 23:38:06 +00:00
b4ggio-su add6642653 Updates 2019-01-08 22:20:41 +00:00
benpturner 8e40bdf7d7 Updated Exit statement 2019-01-04 10:09:17 +00:00
benpturner 258890d696 Updated to include get-screenshotmulti 2019-01-04 10:00:46 +00:00
benpturner 3dcf3046b9 Altered rolen's merge to work 2019-01-03 22:08:01 +00:00
rolen 205d4f3693 Update sharp.cs
[+] use of ManualResetEvents instead of Thread.Sleep
[+] Add Jitter to beacontime
[+] General tidy up
2019-01-03 18:33:10 +00:00
benpturner 715e4f2dd2 Updated kill-implant to continue application execution and exit cleanly 2019-01-03 09:09:41 +00:00
benpturner 92651a5290 Replaced System.Environment.Exit with Console.ReadLine() 2019-01-02 23:44:37 +00:00
benpturner b4f994e300 Truncate the inject-shellcode command 2019-01-02 20:02:03 +00:00
benpturner 8b8e4b1d05 Updated to Remove Console.WriteLine 2019-01-02 09:45:35 +00:00
benpturner b8836304f5 Updated run-dll to work without parameters 2019-01-01 20:44:12 +00:00
benpturner c1970ce67f Removed spaces in URLConfig 2019-01-01 16:29:37 +00:00
benpturner 14e5705517 Dont send the full modules back in the cookie 2019-01-01 15:57:25 +00:00
benpturner a576952f47 Added upload-file & download-file to C# Implant 2018-12-31 17:22:58 +00:00
benpturner 3fd26dbab2 Updated to include Core.dll that autoloads key functions 2018-12-30 23:52:39 +00:00
benpturner c9e0cc9c92 Updated listmodules view 2018-12-29 12:47:57 +00:00
benpturner 20c507787e Added arpscan to C# Implant 2018-12-29 12:17:35 +00:00
benpturner 71fd04fc84 Updated try - catch for C# Implant 2018-12-29 00:18:43 +00:00
benpturner 86f58cf14e Added Inject-Shellcode 2018-12-28 22:59:54 +00:00
benpturner 9fa1e7636f Added run-exe & run-dll 2018-12-28 18:33:43 +00:00
benpturner 94eefafe59 Updated seatbelt usage 2018-12-27 12:53:55 +00:00
benpturner 836c3b0d6d Added run-assembly example 2018-12-27 12:19:55 +00:00
benpturner 190cb33288 Added CSharp Implant/Dll/Shellcode - More functionality coming soon 2018-12-27 12:10:46 +00:00
benpturner 7aabdaf61e Removed process start for Netsh.exe on non migrate executable 2018-11-20 14:16:59 +00:00
benpturner ec9c87191d Added Standalone msbuild.exe - need to add to payloads.py 2018-10-16 18:08:41 +01:00
benpturner 204fff0a75 'Added CSC Output File to payloads' 2018-10-10 14:36:10 +01:00
benpturner a3d0b0c887 'Added List-URLs Command to DB' 2018-10-10 08:16:32 +01:00
benpturner 601ca3a977 'Updated IV' 2018-09-02 20:08:53 +01:00
benpturner 76dc7dfeac Updated to remove requirement for pycrypto for Python implants 2018-08-03 22:14:33 +01:00
benpturner 42a9917a19 Updated to include AMSI Bypass 2018-08-01 10:18:03 +01:00