Skip to content

Commit

Permalink
v2.2
Browse files Browse the repository at this point in the history
  • Loading branch information
@Tylous
Tylous committed Feb 19, 2022
1 parent c890b3c commit 4ac281b
Show file tree
Hide file tree
Showing 4 changed files with 26 additions and 28 deletions.
23 changes: 7 additions & 16 deletions Loader/Loader.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,6 @@ type FlagOptions struct {
Post_EX_Process_Name string
metadata string
injector string
ansible string
Host string
outFile string
Profile string
Expand Down Expand Up @@ -65,7 +64,7 @@ type Beacon_SSL struct {
var num_Profile int
var Post bool

func GenerateOptions(stage, sleeptime, jitter, useragent, uri, customuri, customuriGET, customuriPOST, beacon_PE, processinject_min_alloc, Post_EX_Process_Name, metadata, injector, ansible, Host, Profile, ProfilePath, outFile, custom_cert, cert_password, CDN, CDN_Value, datajitter, Keylogger string, Forwarder bool) {
func GenerateOptions(stage, sleeptime, jitter, useragent, uri, customuri, customuriGET, customuriPOST, beacon_PE, processinject_min_alloc, Post_EX_Process_Name, metadata, injector, Host, Profile, ProfilePath, outFile, custom_cert, cert_password, CDN, CDN_Value, datajitter, Keylogger string, Forwarder bool) {
Beacon_Com := &Beacon_Com{}
Beacon_Stage_p1 := &Beacon_Stage_p1{}
Beacon_Stage_p2 := &Beacon_Stage_p2{}
Expand Down Expand Up @@ -221,25 +220,17 @@ func GenerateHTTPVaribles(Host, metadata, uri, customuri, customuriGET, customur
} else {
log.Fatal("Error: Please provide a valid metadata option")
}
if customuri != "0" {
if customuriGET != "0" || customuriPOST != "0" {
log.Fatal("Error: Using customuri with either of customuriGET or customuriPOST is not supported")
}
}
if (customuriGET != "0" && customuriPOST == "0") || (customuriGET == "0" && customuriPOST != "0") {
log.Fatal("Error: When using CustomuriGET/CustomuriPOST, both must be sepecified")
}
if uri == "" {
Post = false
uri := customuri
if customuriGET != "0" && customuriPOST != "0" {
if customuriGET != "" && customuriPOST != "" {
uri = customuriGET
fmt.Println("[*] GET URI base: " + uri)
}

Beacon_GETPOST.Variables["HTTP_GET_URI"] = Utils.GenerateURIValues(1, num_Profile, Post, uri)
Post = true
if customuriGET != "0" && customuriPOST != "0" {
if customuriGET != "" && customuriPOST != "" {
uri = customuriPOST
fmt.Println("[*] POST URI base: " + uri)
}
Expand All @@ -251,13 +242,13 @@ func GenerateHTTPVaribles(Host, metadata, uri, customuri, customuriGET, customur
num_uri, _ := strconv.Atoi(uri)
Post = false
uri := customuri
if customuriGET != "0" && customuriPOST != "0" {
if customuriGET != "" && customuriPOST != "" {
uri = customuriGET
fmt.Println("[*] GET URI base: " + uri)
}
Beacon_GETPOST.Variables["HTTP_GET_URI"] = Utils.GenerateURIValues(num_uri, num_Profile, Post, uri)
Post = true
if customuriGET != "0" && customuriPOST != "0" {
if customuriGET != "" && customuriPOST != "" {
uri = customuriPOST
fmt.Println("[*] POST URI base: " + uri)
}
Expand All @@ -270,8 +261,8 @@ func GenerateHTTPVaribles(Host, metadata, uri, customuri, customuriGET, customur
Beacon_GETPOST.Variables["CDN"] = ""
}

Beacon_GETPOST.Variables["number64"] = Utils.GenerateNumer(19340, 15360000)
Beacon_GETPOST.Variables["number86"] = Utils.GenerateNumer(19340, 15360000)
Beacon_GETPOST.Variables["number64"] = Utils.GenerateNumer(19340, 15370000)
Beacon_GETPOST.Variables["number86"] = Utils.GenerateNumer(19340, 15370000)

Beacon_GETPOST.Variables["namprdnumber"] = Utils.GenerateNumer(2, 8)
Beacon_GETPOST.Variables["maxage"] = Utils.GenerateNumer(172800, 31536001)
Expand Down
5 changes: 4 additions & 1 deletion Sample.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,4 +20,7 @@ Customuri:
CDN:
CDN_Value:
ProfilePath:
Forwarder: False
Customuri:
CustomuriGET:
CustomuriPOST:
Forwarder: False
22 changes: 13 additions & 9 deletions SourcePoint.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,6 @@ type FlagOptions struct {
Post_EX_Process_Name string
metadata string
injector string
ansible string
Host string
outFile string
Profile string
Expand Down Expand Up @@ -95,9 +94,9 @@ func options() *FlagOptions {
[*] Linux
[*] Mac`)
uri := flag.String("Uri", "", "The number URIs a profile for beacons to choose from")
customuri := flag.String("Customuri", "0", "The base URI for custom HTTP GET/POST profile - Cannot be used with CustomuriGET or CustomuriPOST")
customuriGET := flag.String("CustomuriGET", "0", "The base URI for custom HTTP GET profile - Must be used with CustomuriPOST")
customuriPOST := flag.String("CustomuriPOST", "0", "The base URI for custom HTTP POST profile - Must be used with CustomuriGET")
customuri := flag.String("Customuri", "", "The base URI for custom HTTP GET/POST profile - Cannot be used with CustomuriGET or CustomuriPOST")
customuriGET := flag.String("CustomuriGET", "", "The base URI for custom HTTP GET profile - Must be used with CustomuriPOST")
customuriPOST := flag.String("CustomuriPOST", "", "The base URI for custom HTTP POST profile - Must be used with CustomuriGET")
beacon_PE := flag.String("PE_Clone", "", `PE file beacon will mimic (Use the number):
[1] srv.dll
[2] ActivationManager.dll
Expand Down Expand Up @@ -215,8 +214,8 @@ func main() {
opt.sleeptime = c.Sleep
opt.uri = c.Uri
opt.customuri = c.Customuri
opt.customuri = c.CustomuriGET
opt.customuri = c.CustomuriPOST
opt.customuriGET = c.CustomuriGET
opt.customuriPOST = c.CustomuriPOST
opt.CDN = c.CDN
opt.useragent = c.Useragent
opt.ProfilePath = c.ProfilePath
Expand All @@ -229,9 +228,14 @@ func main() {
log.Fatal("Error: Please provide a file name to save the profile into")
}
if opt.Host == "" {
log.Fatal("Error: Please provide the hostname, IP or enable ansible mode")
log.Fatal("Error: Please provide the hostname or IP")
}
if opt.customuri != "" && (opt.customuriGET != "" || opt.customuriPOST != "") {
log.Fatal("Error: Using Customuri with either of CustomuriGET or CustomuriPOST is not supported")
}
if (opt.customuriGET != "" && opt.customuriPOST == "") || (opt.customuriGET == "" && opt.customuriPOST != "") {
log.Fatal("Error: When using CustomuriGET/CustomuriPOST, both must be sepecified")
}

Loader.GenerateOptions(opt.stage, opt.sleeptime, opt.jitter, opt.useragent, opt.uri, opt.customuri, opt.customuriGET, opt.customuriPOST, opt.beacon_PE, opt.processinject_min_alloc, opt.Post_EX_Process_Name, opt.metadata, opt.injector, opt.ansible, opt.Host, opt.Profile, opt.ProfilePath, opt.outFile, opt.custom_cert, opt.cert_password, opt.CDN, opt.CDN_Value, opt.Datajitter, opt.Keylogger, opt.Forwarder)

Loader.GenerateOptions(opt.stage, opt.sleeptime, opt.jitter, opt.useragent, opt.uri, opt.customuri, opt.customuriGET, opt.customuriPOST, opt.beacon_PE, opt.processinject_min_alloc, opt.Post_EX_Process_Name, opt.metadata, opt.injector, opt.Host, opt.Profile, opt.ProfilePath, opt.outFile, opt.custom_cert, opt.cert_password, opt.CDN, opt.CDN_Value, opt.Datajitter, opt.Keylogger, opt.Forwarder)
}
4 changes: 2 additions & 2 deletions Struct/Struct.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -57,8 +57,8 @@ var Post_EX_Process_Name = []string{`
set spawnto_x86 "%windir%\\syswow64\\mtstocom.exe";
set spawnto_x64 "%windir%\\sysnative\\mtstocom.exe";
`, `
set spawnto_x86 "%windir%\\syswow64\pcaui.exe";
set spawnto_x64 "%windir%\\sysnative\pcaui.exe";
set spawnto_x86 "%windir%\\syswow64\\pcaui.exe";
set spawnto_x64 "%windir%\\sysnative\\pcaui.exe";
`, `
set spawnto_x86 "%windir%\\syswow64\\powercfg.exe";
set spawnto_x64 "%windir%\\sysnative\\powercfg.exe";
Expand Down

0 comments on commit 4ac281b

Please sign in to comment.