m0rv4i
76317f9ce6
Slim Shellcode & Shellcode_migrate
...
* Remove printf statements as there's no console so can't be seen (removes strings and printf stub reducing size)
* Remove redundant includes
* Exit if process injection fails in both cases
* Remove processId parameter from Shellcode.c as there's a while(1) sleep so we only want to inject into this process in this case
* Only create netsh process in Shellcode_migrate.c if a processId parameter is not passed
2019-03-13 10:32:39 +00:00
m0rv4i
31bf485ac7
Pull out payloads from Payloads.py; Add base64 encoded binary payload files; Fix whitespace issues that were triggering.
2019-03-12 20:33:45 +00:00
m0rv4i
87ad76d64c
Imports sorted
2019-03-12 10:19:08 +00:00
benpturner
1b76ccfe57
Truncated large output in CSV/HTML to stop this being > 100MB. Re-added Parse-Mimikatz feature. Updated CS dropper to work on Server 2003 with .NET v4.
2019-03-07 09:34:19 +00:00
rolen
8a092df9d6
Use default credentials for the proxy if none provided
...
The UseDefaultCredentials on WebClient (if true) will send creds to the server if requested not the proxy. The Proxy object on WebClient is a IWebProxy which only has a Credentials member (yes could probably cast to WebProxy). This change will send the default creds to the default proxy server
2019-03-06 10:31:02 +00:00
benpturner
e55e3df949
Moved Implant-Core.cs to dropper.cs in line with other changes
2019-02-20 16:25:53 +00:00
benpturner
2802fac07a
Added * for High Integrity Process on C# and Powershell implants
2019-02-20 15:58:24 +00:00
m0rv4i
d8fdb6c56c
Move Beacon alias to Implant-Core as Beacon has been moved to Implant-Core
2019-02-12 22:36:20 +00:00
m0rv4i
eda146be84
Actually fix beaconing and not just claim to have...
2019-02-12 22:02:09 +00:00
m0rv4i
20dd527367
Setting and viewing beacon time is now consistent across config and implant types - always 50s/10m/1h format
2019-02-12 21:33:46 +00:00
m0rv4i
82d676f69a
Minor refactoring and update changelog
2019-02-12 17:34:37 +00:00
m0rv4i
9e4a464577
Refactoring and start to break up the dependency cycle
2019-02-11 21:00:56 +00:00
m0rv4i
e16e73e629
Remove duplicate Module loaded message in C# and use prepared statements in DB
2019-02-11 17:19:54 +00:00
m0rv4i
2fea962466
* Refactor tasks to insert on run and update on complete
...
* Pull out py and ps cores into files
* Adjust command stored in DB to be user run command (tracking modules
loaded etc)
* Fixed downloading files so subsequent files with the same name will ba
name-1 name-2 etc
* Renamed Implant-Core.ps1 to Core.ps1 to match C#
2019-02-11 14:44:57 +00:00
rolen
1ef348e32c
Revert "Revert "Merge branch 'master' of https://github.com/nettitude/PoshC2_Python ""
...
This reverts commit 9f8b17f6a6
.
2019-01-21 09:49:07 +00:00
rolen
9f8b17f6a6
Revert "Merge branch 'master' of https://github.com/nettitude/PoshC2_Python "
...
This reverts commit 7231d9026d
, reversing
changes made to d352a8e6e7
.
2019-01-21 09:47:35 +00:00
benpturner
b68af33108
Updated modules
2019-01-20 20:27:28 +00:00
benpturner
7aa05baa3a
Updated if statement in Sharp.cs
2019-01-11 18:01:56 +00:00
benpturner
ec4642bb14
Updated run-exe
2019-01-10 09:24:16 +00:00
benpturner
416ebda177
Removed the writeline for Run-dll/Run-exe
2019-01-10 09:20:12 +00:00
benpturner
5072457487
Updated run-dll
2019-01-09 23:38:06 +00:00
b4ggio-su
add6642653
Updates
2019-01-08 22:20:41 +00:00
benpturner
8e40bdf7d7
Updated Exit statement
2019-01-04 10:09:17 +00:00
benpturner
258890d696
Updated to include get-screenshotmulti
2019-01-04 10:00:46 +00:00
benpturner
3dcf3046b9
Altered rolen's merge to work
2019-01-03 22:08:01 +00:00
rolen
205d4f3693
Update sharp.cs
...
[+] use of ManualResetEvents instead of Thread.Sleep
[+] Add Jitter to beacontime
[+] General tidy up
2019-01-03 18:33:10 +00:00
benpturner
715e4f2dd2
Updated kill-implant to continue application execution and exit cleanly
2019-01-03 09:09:41 +00:00
benpturner
92651a5290
Replaced System.Environment.Exit with Console.ReadLine()
2019-01-02 23:44:37 +00:00
benpturner
b4f994e300
Truncate the inject-shellcode command
2019-01-02 20:02:03 +00:00
benpturner
8b8e4b1d05
Updated to Remove Console.WriteLine
2019-01-02 09:45:35 +00:00
benpturner
b8836304f5
Updated run-dll to work without parameters
2019-01-01 20:44:12 +00:00
benpturner
c1970ce67f
Removed spaces in URLConfig
2019-01-01 16:29:37 +00:00
benpturner
14e5705517
Dont send the full modules back in the cookie
2019-01-01 15:57:25 +00:00
benpturner
a576952f47
Added upload-file & download-file to C# Implant
2018-12-31 17:22:58 +00:00
benpturner
3fd26dbab2
Updated to include Core.dll that autoloads key functions
2018-12-30 23:52:39 +00:00
benpturner
c9e0cc9c92
Updated listmodules view
2018-12-29 12:47:57 +00:00
benpturner
20c507787e
Added arpscan to C# Implant
2018-12-29 12:17:35 +00:00
benpturner
71fd04fc84
Updated try - catch for C# Implant
2018-12-29 00:18:43 +00:00
benpturner
86f58cf14e
Added Inject-Shellcode
2018-12-28 22:59:54 +00:00
benpturner
9fa1e7636f
Added run-exe & run-dll
2018-12-28 18:33:43 +00:00
benpturner
94eefafe59
Updated seatbelt usage
2018-12-27 12:53:55 +00:00
benpturner
836c3b0d6d
Added run-assembly example
2018-12-27 12:19:55 +00:00
benpturner
190cb33288
Added CSharp Implant/Dll/Shellcode - More functionality coming soon
2018-12-27 12:10:46 +00:00
benpturner
7aabdaf61e
Removed process start for Netsh.exe on non migrate executable
2018-11-20 14:16:59 +00:00
benpturner
ec9c87191d
Added Standalone msbuild.exe - need to add to payloads.py
2018-10-16 18:08:41 +01:00
benpturner
204fff0a75
'Added CSC Output File to payloads'
2018-10-10 14:36:10 +01:00
benpturner
a3d0b0c887
'Added List-URLs Command to DB'
2018-10-10 08:16:32 +01:00
benpturner
601ca3a977
'Updated IV'
2018-09-02 20:08:53 +01:00
benpturner
76dc7dfeac
Updated to remove requirement for pycrypto for Python implants
2018-08-03 22:14:33 +01:00
benpturner
42a9917a19
Updated to include AMSI Bypass
2018-08-01 10:18:03 +01:00