RedGhost is a Linux post exploitation framework designed to assist red teams in persistence, reconnaissance, privilege escalation and leaving no trace.
Function to generate various encoded reverse shells in netcat, bash, python, php, ruby, perl
Function to inject sudo command with wrapper function to run a reverse root shell everytime “sudo” is run for privilege escalataion
Function to inject the “ls” command with a wrapper function to run payload everytime “ls” is run for persistence
Function to create cron job that downloads payload from remote server and runs payload every minute for persistence
Function to try various methods to escalate privileges
Function to clear logs and make investigation with forensics difficult
Function to grab mass reconaissance/information on system
Function to check if the system is a virtual machine
Function to execute remote bash script in memory
Function to BanIp using iptables
Also Read – Ghostfuscator : The Python Password-Protected Obfuscator
Installation
one liner to install RedGhost:
wget https://raw.githubusercontent.com/d4rk007/RedGhost/master/redghost.sh; chmod +x redghost.sh; ./redghost.sh
One liner to install prerequisites and RedGhost:
wget https://raw.githubusercontent.com/d4rk007/RedGhost/master/redghost.sh; chmod +x redghost.sh; apt-get install dialog; apt-get install gcc; apt-get install iptables; ./redghost.sh
Prerequisites
Starship is a powerful, minimal, and highly customizable cross-shell prompt designed to enhance the terminal…
Lemmy is an innovative, open-source platform designed for link aggregation and discussion, providing a decentralized…
The latest release of ImHex v1.37.0 introduces a host of exciting features and improvements, enhancing…
Ghauri is a cutting-edge, cross-platform tool designed to automate the detection and exploitation of SQL…
Writing tools have become indispensable for individuals looking to enhance their writing efficiency, accuracy, and…
PatchWerk is a proof-of-concept (PoC) tool designed to clean NTDLL syscall stubs by patching syscall…