Search the Community
Showing results for tags 'python3'.
-
God Genesis is a C2 server purely coded in Python3 created to help Red Teamers and Penetration Testers. Currently, It only supports TCP reverse shell but waits a min, it’s a FUD and can give an admin shell from any targeted WINDOWS Machine. The List Of Commands It Supports:- =================================================================================================== BASIC COMMANDS: =================================================================================================== help –> Show This Options terminate –> Exit The Shell Completely exit –> Shell Works In Background And Prompted To C2 Server clear –> Clear The Previous Outputs =================================================================================================== SYSTEM COMMANDS: =================================================================================================== cd –> Change Directory pwd –> Prints Current Working Directory mkdir *dir_name* –> Creates A Directory Mentioned rm *dir_name* –> Deletes A Directoty Mentioned powershell [command] –> Run Powershell Command start *exe_name* –> Start Any Executable By Giving The Executable Name =================================================================================================== INFORMATION GATHERING COMMANDS: =================================================================================================== env –> Checks Enviornment Variables sc –> Lists All Services Running user –> Current User info –> Gives Us All Information About Compromised System av –> Lists All antivirus In Compromised System =================================================================================================== DATA EXFILTRATION COMMANDS: =================================================================================================== download *file_name* –> Download Files From Compromised System upload *file_name* –> Uploads Files To Victim Pc =================================================================================================== EXPLOITATION COMMANDS: =================================================================================================== persistence1 –> Persistance Via Method 1 persistence2 –> Persistance Via Method 2 get –> Download Files From Any URL chrome_pass_dump –> Dump All Stored Passwords From Chrome Bowser wifi_password –> Dump Passwords Of All Saved Wifi Networks keylogger –> Starts Key Logging Via Keylogger dump_keylogger –> Dump All Logs Done By Keylogger python_install –> Installs Python In Victim Pc Without UI Feature 1. The Payload.py is a FULLY UNDETECTABLE(FUD) use your own techniques for making an exe file. (Best Result When Backdoored With Some Other Legitimate Applications) 2. Able to perform privilege escalation on any Windows system. 3. Fud keylogger 4. 2 ways of achieving persistence 5. Recon automation to save your time. [hide][Hidden Content]]
-
- godgenesis:
- python3
- (and 9 more)
-
Features Connection is encrypted using random RSA + AES key Multiple clients support Execute shell commands Download/Upload files Take screenshot Cross platform [hide][Hidden Content]]
-
Builds malware analysis Windows virtual machines so that you don’t have to. Demo Video: Requirements Python 3.3+ packer: [Hidden Content] or an vSphere / ESXi server Minimum specs for the build machine At least 5 GB of RAM VT-X extensions strongly recommended Usage Box creation This creates your base box that is imported in Vagrant. Afterwards you can re-use the same box several times per sample analysis. Run: malboxes build <template> You can also list all supported templates with: malboxes list This will build a Vagrant box ready for malware investigation you can now include it in a Vagrantfile afterwards. For example: malboxes build win10_64_analyst [Hidden Content] contains further information about what can be configured with malboxes. Per analysis instances malboxes spin win10_64_analyst <name> This will create a Vagrantfile prepared to use for malware analysis. Move it into a directory of your choice and issue: vagrant up By default the local directory will be shared in the VM on the Desktop. This can be changed by commenting the relevant part of the Vagrantfile. For example: malboxes spin win7_32_analyst 20160519.cryptolocker.xyz Configuration Malboxes' configuration is located in a directory that follows usual operating system conventions: Linux/Unix: ~/.config/malboxes/ Mac OS X: ~/Library/Application Support/malboxes/ Win 7+: C:\Users\<username>\AppData\Local\malboxes\malboxes\ The file is named config.js and is copied from an example file on first run. [Hidden Content] is documented. ESXi / vSphere support Malboxes uses virtualbox as a back-end by default but since version 0.3.0 support for ESXi / vSphere has been added. Notes about the [Hidden Content]. Since everyone’s setup is a little bit different do not hesitate to open an issue if you encounter a problem or improve our documentation via a pull request. Profiles We are exploring with the concept of profiles which are stored separately than the configuration and can be used to create files, alter the registry or install additional packages. See [Hidden Content] for an example configuration. This new capacity is experimental and subject to change as we experiment with it. More information Blog posts Introductory blog post: [Hidden Content] in a talk titled Applying DevOps Principles for Better Malware Analysis [Hidden Content] (HTML, best) [Hidden Content] (PDF, degraded) [Hidden Content] License Code is licensed under the GPLv3+, see LICENSE for details. Documentation and presentation material is licensed under the Creative Commons Attribution-ShareAlike 4.0, see docs/LICENSE for details. Dowload & Source : [Hidden Content]
-
- 5
-
- malware-analysis
- vagrant
-
(and 2 more)
Tagged with: