Skip to content

Recompiling Stagers

Jump to bottom
byt3bl33d3r edited this page Sep 7, 2019 · 6 revisions

Recompiling Stagers

Eventually the default ST stager (a .NET assembly) that's present in the repository is gonna get flagged by some AV/EDR product, usually the easiest way to get around this is just to recompile it and replace naga.exe in the teamserver/data directory with the newly compiled version. It will then automatically get picked up by the various stagers, encoded & compressed on runtime.

  1. Download Visual Studio and Naga (the SILENTTRINITY C# stager)
  2. Open the Naga Visual Studio solution file
  3. Compile it, it will generate naga.exe
  4. Replace the old naga.exe in the teamserver/data directory with the newly compiled one

Overview

  1. Home

Getting Started

  1. Installation
  2. Basic Usage

Stagers

  1. To Do

Modules

  1. To Do

Sessions

  1. To Do

Security

  1. Teamserver Security Considerations/Guidelines

Advanced

  1. Recompiling Stagers
  2. Generating Stageless Payloads
  3. Porting Over Existing C# Tools & Tradecraft

Misc

  1. Updating the Mimikatz DLLs for the Mimikatz Module
  2. Known Bugs & Fixes
Clone this wiki locally