Rooba
/
pupy
mirror of https://github.com/n1nj4sec/pupy.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
443 Commits 7 Branches 1 Tag 153 MiB
Commit Graph

443 Commits

Author SHA1 Message Date
Alessandro ZANNI 895bfae82d fix shell_exec issue 2016-07-29 22:42:06 +02:00
Alessandro ZANNI 5973a8d432 new updates 2016-07-29 18:05:34 +02:00
n1nj4sec 069d892ec0 display a message when creds db is empty 2016-07-28 23:19:08 +02:00
n1nj4sec b03b5eb4e8 fix mimikatz_powershell in x86 processes 2016-07-28 23:12:39 +02:00
n1nj4sec c2c7eed1fc keylogger: use alternative and basic key decoding in case ToUnicodeEx fail (happens often on win10) 2016-07-28 22:57:48 +02:00
n1nj4sec 0f2554325f moving credentials db to data/ 2016-07-28 20:48:10 +02:00
n1nj4sec 4ac376af7a Merge branch 'master' of git://github.com/AlessandroZ/pupy into AlessandroZ-master 2016-07-28 20:33:33 +02:00
Alessandro ZANNI 0dff44d339 fix keylogger issue 2016-07-28 17:53:56 +02:00
Alessandro ZANNI ef36a137ea Merge remote-tracking branch 'upstream/master' 2016-07-28 17:51:15 +02:00
Alessandro ZANNI aa78f6874b new features 2016-07-27 19:24:31 +02:00
n1nj4sec 22dff36939 fix job encoding issue 2016-07-27 19:11:07 +02:00
n1nj4sec 1a0bd4e240 adding help for pyinst new format 2016-07-27 18:44:51 +02:00
n1nj4sec 61acd89196 Merge branch 'master' of git://github.com/quentinhardy/pupy into quentinhardy-master 2016-07-27 18:42:47 +02:00
n1nj4sec 2fc505ea6a adding privesc category 2016-07-27 18:40:41 +02:00
n1nj4sec 1b7485b5af Merge branch 'AlessandroZ-master' 2016-07-27 18:35:48 +02:00
root 1028cd23a8 New 'pyinst' output format for making a .py which can be used by pyinstaller 2016-07-27 09:22:02 -04:00
Alessandro ZANNI f3af4aa726 fix powershell upload 2016-07-24 21:50:11 +02:00
Alessandro ZANNI cb07309a90 adding new feature: powershell upload 2016-07-22 15:55:40 +02:00
n1nj4sec d446596063 fix bind ssl payloads 2016-07-21 21:47:22 +02:00
n1nj4sec c341ca6ed4 Merge branch 'AlessandroZ-master' 2016-07-21 20:01:09 +02:00
n1nj4sec f1a6b709f9 Merge branch 'master' of git://github.com/AlessandroZ/pupy into AlessandroZ-master 2016-07-21 20:00:35 +02:00
n1nj4sec 6e1b768024 makes payload ignore when some dependencies are not installed 2016-07-18 22:35:28 +02:00
Alessandro ZANNI 1b808a29b4 session options 2016-07-17 20:11:01 +02:00
Alessandro ZANNI 712d5d97b9 fix bugs + keylogger linux 2016-07-12 14:42:52 +02:00
n1nj4sec 7739e1ea18 make shell_exec compatible with both strings and lists of arguments 2016-07-11 19:28:43 +02:00
n1nj4sec 75d3266ee6 fix getpid/getppid on unix systems 2016-07-11 19:28:17 +02:00
n1nj4sec 77a6bf0880 Merge branch 'AlessandroZ-master' into dev 2016-07-11 18:31:31 +02:00
n1nj4sec b57c50b1c9 Merge branch 'quentinhardy-master' into dev 2016-07-11 18:23:14 +02:00
n1nj4sec 7c20c7b25b Merge branch 'mnogostuff-dev' into dev 2016-07-11 18:19:54 +02:00
Alessandro ZANNI 3f26b4e27b list logical drives on a windows system 2016-07-10 19:07:55 +02:00
Alessandro ZANNI 53b46177b8 bug fixes 2016-07-10 13:21:22 +02:00
AlessandroZ d527643baa Merge pull request #1 from AlessandroZ/AlessandroZ-impersonation-process 
Update security.py
 2016-07-04 10:04:11 +02:00
Vavilov 9929522bc8 allow socks to resolve dns remotely 2016-07-03 14:22:48 -04:00
AlessandroZ 78157f786a Update security.py 
- Check added to test if a user has system rights before impersonate a process token (and migrate into it). Without this check, an elevated user (uac bypassed) trying to impersonate a process token had an error, and he will not able to get system anymore (he looses his admin ritghts, I don't know why). This check will avoid that problem.

- When a user impersonate a process token and migrate into it, a full context of this new user is created. It means, he has access to all his environment. To test it, impersonate another user, get a shell and list his environment variables (with "set"). Without this new context, the impersonated user will only have access to the environment variable of the previous user.
 2016-07-03 19:58:18 +02:00
quentinhardy 45d532f598 Merge branch 'master' of https://github.com/quentinhardy/pupy 2016-07-02 07:36:46 -04:00
quentinhardy 938d39b6b5 Print UAC level in output of 'info'. Print integrity Level in output of "sessions" 2016-07-02 07:35:18 -04:00
quentinhardy 81cf5998b5 Print UAC level in "sessions" output (0 to 3, with 0=Disabled) 2016-07-02 07:35:18 -04:00
quentinhardy 9ade4ac2f0 Print UAC level in output of 'info'. Print integrity Level in output of "sessions" 2016-07-02 07:33:10 -04:00
n1nj4sec 19a0ee486e AES encryption and decryption of powershell payloads served over HTTP 2016-06-30 23:12:49 +02:00
quentinhardy 489ceae0f5 Print UAC level in "sessions" output (0 to 3, with 0=Disabled) 2016-06-30 07:56:57 -04:00
n1nj4sec 7519703696 removing xor from ps1_oneliner (too slow) 2016-06-29 20:34:48 +02:00
n1nj4sec 14a3a481b6 improved interface and ip auto-detection in pupygen 2016-06-29 20:26:31 +02:00
n1nj4sec 375abf68fd module to change pupy's process argv & env on linux. related to issue #115 2016-06-28 23:21:20 +02:00
n1nj4sec 99a3a0e604 module utf8 encoding problem fix with some exception tracebacks 2016-06-28 22:43:40 +02:00
n1nj4sec e8567a5263 fix creddump display issues 2016-06-28 21:54:54 +02:00
DeveloppSoft 66d1f4f2d0 Changed info statements to success so every user will be able to see it 2016-06-26 18:59:19 +02:00
n1nj4sec c67055d90f Merge branch 'dev' 2016-06-26 15:49:29 +02:00
quentinhardy f17f6cdb50 Merge branch 'master' of https://github.com/quentinhardy/pupy 2016-06-24 10:45:51 -04:00
quentinhardy af576a701e New module for bypassing UAC with Invoke-BypassUAC.ps1, from Empire 2016-06-24 10:45:09 -04:00
quentinhardy bab54bc0f0 2 new functions used in bypassUAC: is_x64_architecture() and is_x86_architecture() 2016-06-24 10:45:09 -04:00