ronin-payloads
ronin-payloads copied to clipboard
ronin-rb
A Ruby micro-framework for writing and running exploit payloads
Add a bind shell shellcode payload for Linux PPC.
Add a plain vanilla reverse shell shellcode payload for OpenBSD x86-64.
Still need a plain vanilla reverse shell shellcode payload for FreeBSD x86-64.
Add `ronin-c2` to `gemspec.yml` as a dependency. `Ronin::C2` will be used by `Ronin::Payloads` classes to connect to C2 end-points.
Add ColdFusion payloads similar to `backdoor.php` and `rpc.php`. See: http://code.google.com/p/fuzzdb/source/browse/#svn%2Ftrunk%2Fweb-backdoors%2Fcfm
We need pure-JavaScript Payloads for use in XSS: - Keylogger (hook `onkeypress`, `onkeydown`, `onclick`) - Link Rewriter - Hook XHR (aka AJAX) functions. - Log requests/responses. - Rewrite requests. -...
It would be useful to have a simple command injection payload which exfiltrates a single file using `curl` back to a web server we control and/or start in the payload....
Add a `to_perl` method to `CommandPayload` which wraps the command in Perl `system("...");`.
Add a `to_python` method to `CommandPayload` which wraps the command in Python `import os;os.system("...");` function call.
Add a `.to_node_js` method to `CommandPayload` that wraps the command in `exec('...',(error,stdout,stderr)=>{console.log(stdout);});` Node.js function call.