Manufacturing Truth since 1984
Minitrue is a malicious document generator that can run on Linux natively without having the need to install MS Office products
This tool is designed to help make maldoc generation easier for you. However, I highly recommend NOT skipping the manual method taught in the PEN-200 course materials
PEN-200 learners
- VBA Macro
- OLE (Embedded icon)
- Mouse selection
- TAB completion
- Embedded simple HTTP server to host generated documents
- Clipboard-friendly payload URLs
- libicu63 (deb packge is automatically downloaded via wget and installed via apt. Credit to @securingdev for bringing this issue to my attention)
- libssl1.1 (built from source)
- libgdiplus (apt)
- aspose-words (pypi)
- prompt_toolkit (pypi)
kali@kali:~$ git clone https://github.com/X0RW3LL/Minitrue.git
kali@kali:~$ cd Minitrue
kali@kali:~/Minitrue$ ./setup.sh kali@kali:~/Minitrue$ ./minitrue
- Should I be worried about potential backdoors?
- The short answer: No
- The long answer: No. Your concerns are valid, however, and I encourage everyone to practice due diligence by going through the code and keeping an eye out for changes.
- How do I report bugs?
- You may create an issue with all the relevant details
- What about contributions?
- Contribution is highly encouraged. Create a PR and we may discuss it
- How can I contact you?
- You may reach out via Twitter or Discord:
@x0rw3ll
- You may reach out via Twitter or Discord:
Special thanks to the entire OffSec team, as well as the amazing community that's helped me through my journey ❤️
OffSec Official Website
OffSec Community Discord
Kali Linux & Friends Discord
