PSHinjector

PSHinjector autoscript is a tool that inject shellcode(x64 payload) by powershell with python3 programing

PSHinjector是一個由python3編寫的工具，可載入客製Metasploit生成的powershell格式的raw檔(須為x64_rev_https或x64_rev_http)並使用PS1toEXE封裝或是您也可使用本工具生成普通的raw檔再進行封裝。

提取powershell empire專案中shellcode注入模塊將Metasploit生成的shellcode注入

且本工具亦提取Invoke-Obfuscation專案的powershell代碼混淆模塊對powershell代碼混淆

您也可使用python3.HttpServer將生成的payload放置output文件夾中，並讓受害者執行此工具生成的語句獲得會話

Basic Flow

Example 1
- msfvenom 產生raw檔
- sc 引入powershell格式raw檔
- og 合併powershell文件
- exe 模塊封裝
- msf 模塊監聽
Example 2
- sc 模塊產生普通raw檔
- og 合併powershell文件
- ob 混淆powershell代碼
- web 開啟HttpServer等待下載語句
- msf 模塊監聽
Example 3
- sc 模塊產生普通raw檔
- og 合併powershell文件
- exe 模塊封裝
- msf 模塊監聽

還有更多使用方法可以發掘

Requirements

python3

Installation

$ git clone https://github.com/curtis992250/PSHinjector.git

最新的Kali 2020 需手動安裝gedit & gnome-terminal

apt-get update
apt-get install gedit
apt-get install gnome-terminal

Usage

$ python3 pshinjector.py

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
core		core
module		module
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
pshinjector.py		pshinjector.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

core

core

module

module

.gitignore

.gitignore

LICENSE

LICENSE

README.md

README.md

pshinjector.py

pshinjector.py

Repository files navigation

PSHinjector

Basic Flow

Requirements

Installation

Usage

Reference

About

Releases

Packages

Languages

License

TaroballzChen/PSHinjector

Folders and files

Latest commit

History

Repository files navigation

PSHinjector

Basic Flow

Requirements

Installation

Usage

Reference

About

Resources

License

Stars

Watchers

Forks

Languages