MeterPwrShell

Automated Tool That Generate A Powershell Oneliner That Can Create Meterpreter Shell On Metasploit,Bypass AMSI,Bypass Firewall,And FUD

This tool is powered by Metasploit-Framework,Xencrypt,and amsi.fail

Important Note

• NEVER UPLOAD THE PAYLOAD THAT GENERATED BY THIS PROGRAM TO ANY ONLINE SCANNER
• NEVER USE THIS PROGRAM FOR MALICIOUS PURPOSE
• SPREADING THE PAYLOAD THAT GENERATED BY THIS PROGRAM IS NOT COOL
• ANY DAMAGE GENERATED BY THIS PROGRAM IS NOT MY (As the program maker) RESPONSIBILTY!!!
• i know,probably 90% of people seeing this "Important Note" doesnt care.

Features (v1.2.0)

• Full undetectable payload.Even if the payload detected,the AV can't do anything cause the payload has been automaticly migrated to another process.(i should've change this to "Full Unkillable payload")
• Bypasses AMSI Successfully (if you choose amsibypasscode technique with shortened payload)
• Short One-Liner (if you choose amsibypasscode technique with shortened payload)
• Bypass Firewall (If you pick an unstaged payload)
• Great CLI
• A Lot More (Try it by yourself)

---

All payload features is tested on Windows 10 v20H2

---

Advantages Of MeterPwrShell Compared To The web_delivery Module From Metasploit Framework

• Shorter stager (Or short one-liner in this case)
• Shorter payload stage
• Various AMSI bypass technique and code
• Faster payload loading
• Dont need to setup a server for the stager
• Support Ngrok built-in (so the victim doesnt need to be on the same local network)

Requirements

• Kali Linux,Ubuntu,Or Debian (If you dont use on of those,the tool will not work!!!)
• Metasploit Framework
• Internet Connection (Both On Victim And Attacker Computer)

Installation

apt update && apt install wget
mkdir MeterPwrShell
cd MeterPwrShell && wget https://github.com/GetRektBoy724/MeterPwrShell/releases/download/v1.2.0/meterpwrshellexec
chmod +x meterpwrshellexec

Usage

# ./meterpwrshellexec -c help
 Available arguments : help, version, showbanner, showlastdebuglog, disablerootdetector, disableinternetdetector, disablealldetector                                  
 help : Show this page                                                                                                                                                
 version : Show MeterPwrShell's version                                                                                                                               
 showbanner : Show MeterPwrShell's Banner                                                                                                                             
 showlastdebuglog : Well,Its kinda self-explanatory tho                                                                                                               
 disablerootdetector : Well,Its kinda self-explanatory tho                                                                                                            
 disableinternetdetector : Well,Its kinda self-explanatory tho                                                                                                        
 disablealldetector : Disable all detector except Linux distribution detector

You also can use MeterPwrShell Without Any Flags And Arguments

Attack Vectors

• BadUSBs
• Malicious Shortcuts (lnk2pwn)
• Document Macro Payload
• Extreme Way : Type it in by yourself
• Any exploit/vulns that let you execute command to victim
• Idk i have run out of idea lmao

To-do List

These next improvements will be added to v1.3.0

• Bypass UAC
• Built-in GetSYSTEM
• Disable All Firewall Profile
• Fully Bypass Windows Defender Real-time Protection
• Disable Windows Defender Security Features
• Bypass/Disable Tamper Protection
• Implementation On Main Code