Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/Rvn0xsy/Cobaltstrike-atexec
使得Cobaltstrike支持Atexec
https://github.com/Rvn0xsy/Cobaltstrike-atexec
Last synced: 3 months ago
JSON representation
使得Cobaltstrike支持Atexec
- Host: GitHub
- URL: https://github.com/Rvn0xsy/Cobaltstrike-atexec
- Owner: Rvn0xsy
- Created: 2020-06-30T10:29:56.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2020-06-30T10:43:14.000Z (over 4 years ago)
- Last Synced: 2024-04-12T19:38:45.658Z (7 months ago)
- Language: C++
- Size: 135 KB
- Stars: 85
- Watchers: 4
- Forks: 16
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - Rvn0xsy/Cobaltstrike-atexec - 使得Cobaltstrike支持Atexec (C++)
README
# Cobaltstrike-atexec
利用任务计划进行横向,需要与135端口、445端口进行通信
- 主要实现:[如何实现一个Atexec](https://payloads.online/archivers/2020-06-28/1)
- 主要技术:[通过反射DLL注入来构建后渗透模块(第一课)](https://payloads.online/archivers/2020-03-02/1)
## 使用方式
1. 加载[atexec.cna](https://github.com/Rvn0xsy/Cobaltstrike-atexec)
```perl
$dll = "reflective_dll.dll";
beacon_command_register(
"atexec",
"atexec text to beacon log",
"Synopsis: atexec [host] [username] [password] [command] [domain]\n");
alias("atexec", {
$args = substr($0, 7);
bdllspawn($1, script_resource($dll), $args, "Atexec....", 10000, false);
blog($1, "My arguments are:" . substr($0, 7) . "\n");
});
```
2. 在Beacon会话获得后
```
beacon> help atexec
Synopsis: atexec [host] [username] [password] [command] [domain]
```