Last active
August 6, 2021 15:26
-
-
Save vestjoe/f5646c5245f39d2160c215721e66d1dd to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Staged Payload Generator | |
| # Author: @joevest | |
| # Generates all stageless payload types for each current listener | |
| # Directory for Payloads | |
| mkdir("/payloads"); | |
| println("Stageless Payload Generator"); | |
| menubar("Stageless Payload Generator", "payloadgenerator"); | |
| popup payloadgenerator { | |
| item "&Stageless Payload Generator" { | |
| prompt_confirm("Generate payloads for each listener?", "Payload Generator Confirmation", { | |
| payloadgenerate(); | |
| show_message("Payloads saved to ./payloads"); | |
| }); | |
| } | |
| } | |
| sub payloadgenerate { | |
| foreach $name (listeners_local()) { | |
| println("Generating Payloads for listener: $name"); | |
| #Stageless Payloads | |
| # x64 dll | |
| $payload_name = "$name" . "_x64.dll"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "dll", "x64"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x86 dll | |
| $payload_name = "$name" . "_x86.dll"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "dll", "x86"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x64 exe | |
| $payload_name = "$name" . "_x64.exe"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "exe", "x64"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x86 exe | |
| $payload_name = "$name" . "_x86.exe"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "exe", "x86"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x64 ps1 | |
| $payload_name = "$name" . "_x64.ps1"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "powershell", "x64"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x86 ps1 | |
| $payload_name = "$name" . "_x86.ps1"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "powershell", "x86"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x64 bin | |
| $payload_name = "$name" . "_x64.bin"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "raw", "x64"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x86 bin | |
| $payload_name = "$name" . "_x86.bin"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "raw", "x86"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x64 svc.exe | |
| $payload_name = "$name" . "_x64.svc.exe"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "svcexe", "x64"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| # x86 svc.exe | |
| $payload_name = "$name" . "_x86.svc.exe"; | |
| println(" - $payload_name"); | |
| $data = artifact_payload($name, "svcexe", "x86"); | |
| $cradle = openf(">/payloads/$payload_name"); | |
| writeb($cradle, $data); | |
| closef($cradle); | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment