Caleb Stewart
Caleb Stewart
For what it's worth, this is the source for a generated WAR file: ```jsp 0 ) { fyv.write( buffer, 0, length ); fyv.flush(); } } catch( Exception e ){} try...
**OKAY**. I think I know what's happening, but I'm not sure what the proper way to fix it is. The source I posted above uses an `InputStreamReader` wrapped in a...
Yeah, I had thought of that. I'm not sure if there was a deliberate reason they chose to structure the payload in this way, though. I may send out some...
I'm not sure what the best solution is here. There's fundamentally two problems detailed here: 1. `euid` permissions are lost during `Popen` calls due to `/bin/sh -c` 2. Processes with...
Example of `/proc/$$/exe` fix:  Again, this is not ideal, but I think it's the best we can do until we fix the `euid` situation.
If you have some time to do some independent testing of the above pull request, I'd appreciate it. The tests pass, and some anecdotal testing seems positive, but I haven't...
Windows support is currently in a... precarious state... `pwncat` utilized a staged C2 which is currently to disk. Windows Defender has a detection specifically for `pwncat` and blocks it from...
This shouldn't be too difficult to implement. I should be able to simply remove the reference from `Manager.modules` and `sys.modules`, then reload the Python module. I'll try to get this...
I implemented a first-pass on this in the referenced PR. @DanaEpp if you have the time/interest, I'd appreciate you giving that branch a try. You should be able to either...
I will look into the module issues, but regarding the "basic shell commands" part, you need to switch to the remote prompt. You are trying to enter shell commands into...