View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0007815Kali LinuxNew Tool Requestspublic2022-07-23 23:162022-07-28 16:41
Reportertristram Assigned Tosteev  
PrioritynormalSeverityminorReproducibilityN/A
Status closedResolutionno change required 
Summary0007815: Get-ReverseShell.ps1 - Adding PowerShell tools to Kali
Description

With Kali Linux supporting PowerShell, I am looking to contribute more PowerShell love for Kali through dedicated scripts. I am open to all feedback and appreciate you taking time to consider this request.

[Name] Get-ReverseShell
[Version] 1.0 Initial Launch
[Homepage / Download] https://github.com/gh0x0st/Get-ReverseShell
[Author] Tristram
[License] GPLv3
[Description] Get-ReverseShell is a project that stems from the Invoke-PSObfuscation(https://github.com/gh0x0st/Invoke-PSObfuscation) framework, with the sole purpose of producing obfuscated reverse shells for PowerShell. With the way this framework is built, each component of the original payload goes through a randomly selected generator, resulting in a different yield through every execution of this script. Due to the complexity of the obfuscation logic, the resulting payloads will be exceedingly difficult to signature and will slip past heuristic engines that are not programmed to emulate the inherited logic.

[Dependencies] The script itself, as well as the resulting shells (Windows/Linux) require anything newer than PowerShell version 2.0
[Activity] I built the obfuscation framework last year and have started a new initiative to deploy scripts with dedicated purposes that utilize this framework. They will be actively maintained.
[How To Use] Usage examples are included in the repo

Attached Files
Usage Example.png (340,672 bytes)

Activities

tristram

tristram

2022-07-27 18:10

reporter   ~0016440

This file is now hosted at https://github.com/gh0x0st/Invoke-PSObfuscation/tree/main/Get-ReverseShell, off the primary framework's repo.
tristram

tristram

2022-07-28 14:41

reporter   ~0016459

I am going to take a shot at packing this, will comment back when it's been updated.
steev

steev

2022-07-28 16:41

reporter   ~0016463

Going to close the issue so it isn't sitting open while you work on it. When you finish up the work, feel free to re-open or submit a new bug report with the request!

Issue History

Date Modified Username Field Change
2022-07-23 23:16 tristram New Issue
2022-07-23 23:16 tristram File Added: Usage Example.png
2022-07-27 18:10 tristram Note Added: 0016440
2022-07-28 14:41 tristram Note Added: 0016459
2022-07-28 16:41 steev Assigned To => steev
2022-07-28 16:41 steev Status new => closed
2022-07-28 16:41 steev Resolution open => no change required
2022-07-28 16:41 steev Note Added: 0016463