Evilreg : Reverse Shell Using Windows Registry Files (.reg)

Evilreg is a reverse shell using Windows Registry files (.reg)

Features

Reverse TCP Port Forwarding using Ngrok.io

Requirements

Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signup
Your authtoken is available on your dashboard: https://dashboard.ngrok.com
Install your auhtoken: ./ngrok authtoken <YOUR_AUTHTOKEN>
Target must reboot/re-login after installing the .reg file

Also Read – CatchYou : FUD Win32 Msfvenom Payload Generator

Usage

git clone https://github.com/thelinuxchoice/evilreg
cd evilreg
bash evilreg.sh

Disclaimer

Usage of Evilreg for attacking targets without prior mutual consent is illegal. It’s the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

R K

Next Hidden Cry - Windows Crypter/Decrypter Generator With AES 256 Bits Key »

Previous « URLBrute : Tool To Brute Website Sub-Domains & Dirs

Share

Published by

R K

Tags: EvilregReverse ShellwindowsWindows Registry Files

4 years ago

Recent Posts

Hacking Tools

Shadow-rs : Harnessing Rust’s Power For Kernel-Level Security Research

shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…

1 week ago

Cyber security

ExecutePeFromPngViaLNK – Advanced Execution Of Embedded PE Files via PNG And LNK

Extract and execute a PE embedded within a PNG file using an LNK file. The…

2 weeks ago

Cyber security

Red Team Certification – A Comprehensive Guide To Advancing In Cybersecurity Operations

Embark on the journey of becoming a certified Red Team professional with our definitive guide.…

3 weeks ago

Hacking Tools

CVE-2024-5836 / CVE-2024-6778 : Chromium Sandbox Escape via Extension Exploits

This repository contains proof of concept exploits for CVE-2024-5836 and CVE-2024-6778, which are vulnerabilities within…

3 weeks ago

Exploitation Tools

Rust BOFs – Unlocking New Potentials In Cobalt Strike

This took me like 4 days (+2 days for an update), but I got it…

3 weeks ago

Cyber security

MaLDAPtive – Pioneering LDAP SearchFilter Parsing And Security Framework

MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection. Its foundation is…

3 weeks ago

L