Hacking Tools

ModTask – Task Scheduler Attack Tool

ModTask is an advanced C# tool designed for red teaming operations, focusing on manipulating scheduled tasks to facilitate both lateral movement and persistence in target networks.

This tool allows users to list, analyze, and modify scheduled tasks on both local and remote systems.

It supports a variety of trigger modifications and includes built-in features for cleaning up after operations to restore original task settings.

ModTask is a crucial asset for cybersecurity professionals, requiring administrative access to effectively manage scheduled tasks across environments.

ModTask is a C# Red Teaming Attack Tool that can be utilized for:

  • Listing Scheduled Tasks along with their SDDL strings and key information, locally and remotely.
  • Selecting a specific Scheduled Task for a detailed overview of its configuration settings.
  • Modifying a Scheduled Task, locally and remotely. Utilizing either an Exe file path and arguments or a COM object Class ID for execution. Useful for lateral movement and persistence scenarios.
  • Supports mutiple trigger modifications such as Startup Boot Triggers and Daily Triggers with Repetition Patterns.
  • Built in cleanup functionality to revert the task to its orginal state before any modifications had taken place.
Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtoolsModTask
2 months ago

Recent Posts

BypassAV : Techniques To Evade Antivirus And EDR Systems

BypassAV refers to the collection of techniques and tools used to bypass antivirus (AV) and…

8 hours ago

ComDotNetExploit : Exploiting Windows Protected Process Light (PPL)

ComDotNetExploit is a Proof of Concept (PoC) tool designed to demonstrate the exploitation of Windows…

8 hours ago

Trigon : A Revolutionary Kernel Exploit For iOS

Trigon is a sophisticated deterministic kernel exploit targeting Appleā€™s iOS devices, leveraging the CVE-2023-32434 vulnerability.…

8 hours ago

Bug Bounty Report Templates : Enhancing Efficiency In Vulnerability Reporting

Bug bounty report templates are essential tools for streamlining the process of documenting vulnerabilities. They…

9 hours ago

FullBypass : A Tool For AMSI And PowerShell CLM Bypass

FullBypass is a tool designed to circumvent Microsoft's Antimalware Scan Interface (AMSI) and PowerShell's Constrained…

10 hours ago

Carseat : A Python Implementation Of Seatbelt

Carseat is a Python-based tool that replicates the functionality of the well-known security auditing tool,…

13 hours ago