Comments (8)
What do you mean, like a payload that calls back to mshta.exe or a stagger that uses mshta.exe to get the agent on to the system?
from silenttrinity.
Stager to get the agent.
from silenttrinity.
So in one of the scripts you can use ActiveXObject
to call cmd
and call code. It is not the most clean solution but maybe you could grab and execute a msbuild stagger using a hta.
from silenttrinity.
Can you specify which script you're talking about?
from silenttrinity.
Using ActiveXObject , do you mean by creating wscript.shell object ?
Won't that require the site to be in Trusted sites?
from silenttrinity.
You are talking about an hta correct. Htas are html applications. They live on local disk and are run inside of an stripped down IE window. The code that gets run is using ActiveXObject
. The scripting languages can be either visualbasic or javascript. The issues is that ActiveXObject
is limited to COM objects. Using wscript.shell is the only way I can think of being able to create a stagger. Even though it would basically fall back onto another staging method. Unless there is a COM object that can be used to compile c# ?
from silenttrinity.
I think this could be done: when the malicious executable runs, it could get the shell and run "mshta 'url of the hta'" .
from silenttrinity.
this is already on my to do list :)
from silenttrinity.
Related Issues (20)
- [Feature Request] Linked Docker Hub builds HOT 1
- Sessions do not appear on client HOT 1
- Update Install Documentation HOT 1
- [BUG] 'PromptSession' object has no attribute 'prompt_async' HOT 3
- Cannot use staged payloads (only stageless) [BUG] HOT 5
- upload.py: module 'module' has no attribute 'STModule' HOT 2
- [BUG] Unable to perform http POST request using exe stager HOT 5
- Could not find a version that satisfies the requirement Hypercorn==0.9.0
- [BUG] env -S not supported on Ubuntu 18.04 HOT 1
- Boo casting exception when executing modules HOT 5
- [FEATURE REQUEST] Implicitly set rhost value in stagers
- [enhancement] Implicitly set rhost value for stargers HOT 1
- [BUG] Unhandled exception in event loop HOT 1
- [BUG]
- [BUG] Not able to run st.py HOT 1
- Stagers never complete. HOT 3
- [BUG]Multi Operator Setup
- [BUG] Silenttrinity Client strait lines not showing up HOT 1
- [BUG] Client crashes after using any command HOT 1
- Got error while using boo/inject
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from silenttrinity.