https://github.com/notoriousrebel/configpersist

Modifies machine.config for persistence after installing signed .net assembly onto GAC
https://github.com/notoriousrebel/configpersist

csharp dotnet hooking persistence redteam

Last synced: 9 months ago
JSON representation

Modifies machine.config for persistence after installing signed .net assembly onto GAC

Host: GitHub
URL: https://github.com/notoriousrebel/configpersist
Owner: NotoriousRebel
Created: 2020-02-16T07:40:04.000Z (over 6 years ago)
Default Branch: master
Last Pushed: 2022-03-17T21:40:13.000Z (over 4 years ago)
Last Synced: 2025-04-11T18:40:21.239Z (about 1 year ago)
Topics: csharp, dotnet, hooking, persistence, redteam
Language: C#
Homepage:
Size: 25.4 KB
Stars: 13
Watchers: 2
Forks: 4
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# ConfigPersist

Utilizes modifying machine.config for persistence through CLR hooking, after installing signed .NET assembly
onto Global Assembly Cache.

### Note

For this technique to work you will need to generate a
keyfile, you can use a tool called [sn](https://docs.microsoft.com/en-us/dotnet/framework/tools/sn-exe-strong-name-tool) which stands for strong name.
Place that keyfile and make sure it is called **key.snk** inside the Keyfile
directory or you can place key.snk and the executable in the same directory.

To learn more about this technique feel free to read this [post](https://secbytes.net/Configuring-our-Machine-for-Persistence).

For a more updated version of this technique visit this [PR for SharpSploit](https://github.com/cobbr/SharpSploit/pull/46).

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/notoriousrebel/configpersist

Awesome Lists containing this project

README