A python based payload that downloads raw shellcode over http and injects into memory.
Optionally can beacon back every X seconds.
Based on the PoC from @secretsquirrel https://github.com/secretsquirrel/shellcode_retriever
added rev_ssh.py module
Merge branch 'master' of github.com:byt3bl33d3r/Veil-Evasion
merge new module
reverted encoder back to call4_dword_xor
added randomization to rev_ssh module
fixed indentation errors
added missing new line char
some really dumb mistakes
Sweet, I'll check this out
I just played with this, it looks and works great. Quick question for you on the beaconing functionality. I assumed that if the URI it is looking for isn't present, and beaconing is on, then it would retry for that file (basically like it is in an infinite loop) after the specified checkin time until it finds the URI. I just tested, and it looks like it currently checks once, and if not present, dies. Is that what you intended?
But ideally, we'd like to use this and promote it for the next V-Day in March if you are ok with this. I'll be sure to call you out as the author and @secretsquirrel for generating the POC.
the original PoC had that behavior, so i thought it was best to just preserve it. shouldn't be a problem changing it though.
Edit: btw completely ok with you promoting this on V-Day, Thanks!
I agree, It would be better if it continued unless it found a sandbox
environment. Just make sure the error is quiet.
On Feb 28, 2015, at 6:30 PM, byt3bl33d3r email@example.com wrote:
the original PoC had that behavior, so i thought it was best to just
preserve it. shouldn't be a problem changing it though
Reply to this email directly or view it on GitHub
Merge branch 'master' of https://github.com/Veil-Framework/Veil-Evasion…
… into py-dwexec
@ChrisTruncer finally got around to changing it :P should work as expected now
That looks great, I just have one last thing and I think it's good. Beaconing functionality works, but it seems like it ignores the beaconSeconds option. For example, if I set Beacon to Y, and BeaconSeconds to 30, I thought it would check for the file, if not there, basically sleep for 30 seconds (or do whatever) and then check to see if that file exists again after 30 seconds. Currently, it seems to check if that file exists every second vs. the interval set at BeaconSeconds. You think you could change that to sleep for the number of seconds specified, or are you envisioning a different use case?
Thanks for the update, and this is basically done :)
added threading, fixed beaconing
@ChrisTruncer all done!
payload now persists only when beaconing