Shepard is an IN PROGRESS persistence tool using Windows Background Intelligent Transfer Service (BITS).
Running this executable with no arguments or an incorrect amount of arguments will cause shepard to exit cleanly.
BINDSHELL
The server (victim) is written using C#. It listens on port 6006.
Usage: run shepardsbind_serv.exe with no arguments.
The client (attacker) is written using Python and takes one argument: the IP address of the victim’s machine. Usage: run shepardsbind_recv.py with one argument: <victim’s IP>
Running shepardsbind_recv.py with no arguments will return an error. The prompt will look like: %SBS%.
Using Them In Conjunction
The only executable that must be on the victim’s machine is shepard.exe. Host the download bindshell executable to a publicly accessible place. Shepard will download and run the bindshell executable, and the user can now use the python receiver. If the shell is found and killed, it will restart after 30 seconds. Last steps in progress: finding out how to rerun shepard.exe to re-download in case the shell executable is deleted. Most likely will use a service.
A tool crafted with simplicity in mind but harboring its own set of flaws. Despite…
CyberSentry is a robust automated scanning tool designed for web applications. It helps security professionals, ethical…
Delve into the world of DARKARMY, a potent arsenal of cybersecurity tools designed to empower…
Evade (Evasion) - this feature helps you to evade spells of enemies directed at you…
Step into the world of bug hunting with Cazador, a powerful toolkit designed to equip…
Prepare to take your Among Us gaming experience to the next level with the latest…