Skip to content

meterpeter - v2.10.3 - Dev Release

Choose a tag to compare

@r00t-3xp10it r00t-3xp10it released this 20 May 20:35
· 1868 commits to master since this release
0de08ca

ss


:octocat: Project Description
meterpeter - This PS1 starts a listener Server on a Windows|Linux attacker machine and generates oneliner PS reverse shell payloads obfuscated in ASCII | BXOR with a random secret key and another layer of Characters-Variables Obfuscation to be executed on the victim machine (The payload will also execute AMSI reflection bypass in current session to evade AMSI detection while working). You can also recive the generated oneliner reverse shell connection via netcat. (in this case you will lose the C2 functionalities like screenshot, upload, download files, Keylogger, AdvInfo, PostExploitation, etc)


:octocat: Project Quick Jump Links



Source Code Updates {Version 2.10.3 Dev Release}


ss



:octocat: Server Automatic Completion Of Settings

meterpeter C2 Now allow users to skip most of Server inputs, We just need to leave the 'input empty'
[press enter] that meterpeter will auto-compleat the Inputs with 'recomended' settings (If Available).

Some source code examples
auto



:octocat: Improving (Server) Output Displays

Module Description Wiki Pages
CamSnap Manipulate Remote WebCam Function Output Displays Review/Improved wiki CamSnap
GetSystem Escalate Privileges Function Output Displays Review/Improved wiki GetSystem
Beacon Beacon Persistence Function Output Displays Review/Improved wiki Beacon
Dnspoof Dnspoof Sub-Menu Function Output Displays Review/Improved wiki Dnspoof
ListPriv ListPriv Sub-Menu Function Output Displays Review/Improved wiki ListPriv
ListTask ListTask Sub-Menu Function Output Displays Review/Improved wiki ListTask



:octocat: Repairing Bug Reports (issues)

Module Description issue Wiki
Beacon Persistence Module now beacons home from xx to xx sec (set by attacker)
This allow attacker to have a better change to grab the rev connection
issue 2 wiki
Download Function Review/Improved to allow empty spaces in remote path inputs
The use of single quotes its a requirement for this fix to work remotelly
issue 3
Upload Function Review/Improved to allow empty spaces in remote path inputs
The use of single quotes its a requirement for this fix to work remotelly
issue 3



:octocat: Recent Updates to New|Existing Modules

Module Description Commit
Settings New module to help attacker to remember active Server/Client settings commit
DumpSam Function Review/Improved to dump also security LSA secrets (Remote) commit
Beacon Persistence function updated to write Server/Client settings logfile (Locally)
This allows the attacker to store the settings from the previous day(s)
commit
RegACL Search for weak Service Permissions on Registry added to ListPriv (Menu) commit
ListDriv Module Updated to Display also the drives found Used and Free space commit
CredPhi Module for phishing remote credentials using Windows PromptForCredential commit
Manual Manual sellection of target webcam device Name commit




meterpeter v2.10.3 Video tutorial

esc

📟 ⚡ meterpeter - v2.10.3 Dev release - Video Tutorial (Under Windows Distro) ⚡ 📟



☠ Suspicious Shell Activity (RedTeam @2020) ☠