From 9c3dd9d39b2bbac63c286f5a346559ae1a1d0fbb Mon Sep 17 00:00:00 2001 From: Spoon M Date: Sun, 12 Jun 2005 08:15:10 +0000 Subject: [PATCH] some initial ascii notez git-svn-id: file:///home/svn/incoming/trunk@2629 4d416f70-5f16-0410-b530-b9f4589650da --- dev/bh/bh05.tex | 22 ++++++++++++++++++++-- 1 file changed, 20 insertions(+), 2 deletions(-) diff --git a/dev/bh/bh05.tex b/dev/bh/bh05.tex index 49aee827b6..328582674c 100644 --- a/dev/bh/bh05.tex +++ b/dev/bh/bh05.tex @@ -1082,15 +1082,33 @@ Notes on post-exploitation - Core Impact / Syscall Proxying + + Mainly written to support their feature set, not to expose it to an end + user. Don't think you're going to get much access to the syscall libraries, + they are all written in C and dlls for the most part it seems. + + + you get their nice features, pivoting, file access, minishell, etc, but + for anything beyond that, you have to upgrade your agent, and then I don't + believe those are using syscall proxying type things anymore. I think some + of them bundle python interpreters... + + how it works + really cool, and simple + no need to write vicitim-side code for any calls you want to make + inefficent for some types of things (port scanning) - + not very well exposed in impact, used to implement their features, not - used to expose the raw capabilities to an arbitrary user - CANVAS + - mosdef + - model is very similar to dN + - you have to write a client and server component + - build environment not seperated, have you write your client side component + in wanna-be-aitel c, and have you have it in a python script. + - he has an API to do some stuff, but mostly low level stuff, and nothing + high level and cool. + - like all of his stuff, it's very rough and primitive seeming. I'm sure, + just like spike, you can do some cool stuff with it, but it's like building + a car with a rock, or something... + + Code is dirty.... +