Rasta Mouse
Rasta Mouse
Looks like a dup of #348
It depends on what sort of crash you want to simulate. In most cases, a "crash" would just be the result of an unhandled exception somewhere. You could throw an...
The fact you moved laterally using WMI means that your Grunt is running in Session 0 on the target. It not being able to find a referral to domain is...
Most likely you will need to use process injection or find some other means of running a process in their session.
@grenej pretty sure this is due to the way PowerKatz handles the input, nothing to do with Covenant.
I looked into it before, but wasn't able to find a usable DNS library for .NET. If anybody knows of one, I'd be happy to check it out.
Ok, maybe this is feasible after all. 
@cobbr still appears to be the case for me. ``` [19/06/2020 19:53:27 UTC] ChangeDirectory completed (rasta) > cd C:\ C:\ [19/06/2020 19:53:47 UTC] GetCurrentDirectory completed (rasta) > pwd C:\ [19/06/2020...
Sorry @cobbr. My test system is Windows 10 Enterprise LTSC (1809).
AFAIK Covenant can't generate Grunt shellcode (yet?), it's why there are no process injection Tasks at all. Not sure what the timescales for that are, but once that's tackled I'd...