Evilreg : Reverse Shell Using Windows Registry Files (.reg)

R K

May 25, 2020

Evilreg is a reverse shell using Windows Registry files (.reg)

Features

Reverse TCP Port Forwarding using Ngrok.io

Requirements

Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signup
Your authtoken is available on your dashboard: https://dashboard.ngrok.com
Install your auhtoken: ./ngrok authtoken <YOUR_AUTHTOKEN>
Target must reboot/re-login after installing the .reg file

Also Read – CatchYou : FUD Win32 Msfvenom Payload Generator

Usage

git clone https://github.com/thelinuxchoice/evilreg
cd evilreg
bash evilreg.sh

Disclaimer

Usage of Evilreg for attacking targets without prior mutual consent is illegal. It’s the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

Download

Evilreg : Reverse Shell Using Windows Registry Files (.reg)

APPLICATIONS

Pythem – Penetration Testing Framework

mpDNS : Multi-Purpose DNS Server 2019

Pown : A Security Testing An Exploitation Toolkit Built

Nodexp – A Server Side Javascript Injection Tool Capable Of Detecting & Exploiting Node.js...

HOT NEWS

GPT_Vuln-analyzer : Uses ChatGPT API To Create Vulnerability Reports Based On...

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

Cyph : Cryptographically Secure Messaging And Social Networking Service

Security RAT : Tool For Handling Security Requirements In Development

Penglab : Abuse Of Google Colab For Cracking Hashes