lmao the living hell persists buit so do i :sweetdreams:

2025-06-27 13:13:03 -06:00
parent 7d1fac90e5
commit 9dbd8f2426
543 changed files with 42450 additions and 0 deletions
@@ -0,0 +1,71 @@
+
+       Name: HTTP Fetch, Windows x64 Pingback, Reverse TCP Inline
+     Module: payload/cmd/windows/http/x64/pingback_reverse_tcp
+   Platform: Windows
+       Arch: cmd
+Needs Admin: No
+ Total size: 125
+       Rank: Normal
+
+Provided by:
+    Brendan Watters
+    bwatters-r7
+
+Basic options:
+Name                Current Setting  Required  Description
+----                ---------------  --------  -----------
+EXITFUNC            process          yes       Exit technique (Accepted: '', seh, thread, process, none)
+FETCH_COMMAND       CERTUTIL         yes       Command to fetch payload (Accepted: CURL, TFTP, CERTUTIL)
+FETCH_DELETE        false            yes       Attempt to delete the binary after execution
+FETCH_FILENAME      digkVfDgI        no        Name to use on remote system when storing payload; cannot contain spaces or slashes
+FETCH_SRVHOST                        no        Local IP to use for serving payload
+FETCH_SRVPORT       8080             yes       Local port to use for serving payload
+FETCH_URIPATH                        no        Local URI to use for serving payload
+FETCH_WRITABLE_DIR  %TEMP%           yes       Remote writable dir to store payload; cannot contain spaces.
+LHOST                                yes       The listen address (an interface may be specified)
+LPORT               4444             yes       The listen port
+
+
+When FETCH_COMMAND is one of CURL:
+
+Name        Current Setting  Required  Description
+----        ---------------  --------  -----------
+FETCH_PIPE  false            yes       Host both the binary payload and the command so it can be piped directly to the shell.
+
+Description:
+    Fetch and execute an x64 payload from an HTTP server.
+    Connect back to attacker and report UUID (Windows x64)
+
+
+    Name                        Current Setting  Required  Description
+    ----                        ---------------  --------  -----------
+    EXE::Custom                                  no        Use custom exe instead of automatically generating a payload exe
+    EXE::EICAR                  false            no        Generate an EICAR file instead of regular payload exe
+    EXE::FallBack               false            no        Use the default template in case the specified one is missing
+    EXE::Inject                 false            no        Set to preserve the original EXE function
+    EXE::OldMethod              false            no        Set to use the substitution EXE generation method.
+    EXE::Path                                    no        The directory in which to look for the executable template
+    EXE::Template                                no        The executable template file name.
+    FetchHandlerDisable         false            yes       Disable fetch handler
+    FetchHttpServerName         Apache           yes       Fetch HTTP server name
+    FetchListenerBindAddress                     no        The specific IP address to bind to to serve the payload if different from FETCH_SRVHOST
+    FetchListenerBindPort                        no        The port to bind to if different from FETCH_SRVPORT
+    MSI::Custom                                  no        Use custom msi instead of automatically generating a payload msi
+    MSI::EICAR                  false            no        Generate an EICAR file instead of regular payload msi
+    MSI::Path                                    no        The directory in which to look for the msi template
+    MSI::Template                                no        The msi template file name
+    MSI::UAC                    false            no        Create an MSI with a UAC prompt (elevation to SYSTEM if accepted)
+    PingbackRetries             0                yes       How many additional successful pingbacks
+    PingbackSleep               30               yes       Time (in seconds) to sleep between pingbacks
+    PrependMigrate              false            yes       Spawns and runs shellcode in new process
+    PrependMigrateProc                           no        Process to spawn and run shellcode in
+    ReverseAllowProxy           false            yes       Allow reverse tcp even with Proxies specified. Connect back will NOT go through proxy but directly to LHOST
+    ReverseListenerBindAddress                   no        The specific IP address to bind to on the local system
+    ReverseListenerBindPort                      no        The port to bind to on the local system if different from LPORT
+    ReverseListenerComm                          no        The specific communication channel to use for this listener
+    ReverseListenerThreaded     false            yes       Handle every connection in a new thread (experimental)
+    StagerRetryCount            10               no        The number of times the stager should retry if the first connect fails
+    StagerRetryWait             5                no        Number of seconds to wait for the stager between reconnect attempts
+    VERBOSE                     false            no        Enable detailed status messages
+    WORKSPACE                                    no        Specify the workspace for this module
+