|
Post by voxhel on Sept 21, 2015 15:35:50 GMT
im asking this because i want full av bypass... and msf has it is does not bypass avs.... So in the case of bdfproxy it would be better is i supplied not in exe(binary) format but in raw?
|
|
|
Post by xtr4nge on Sept 21, 2015 16:35:32 GMT
The av bypass rate of BDF is very good, but If you want to deliver a custom EXE/Binary/File (not injecting the one that the victim is downloading), you have a downfall, the victim will notice that the received file is not doing what he is expecting from the file. But still, if you want to deliver a custom EXE/Binary/File (take a look to Veil Framework), you can customise Delivery plugin for FruityProxy based on extensions.
regards,
|
|
|
Post by voxhel on Sept 22, 2015 9:20:39 GMT
The av bypass rate of BDF is very good, but If you want to deliver a custom EXE/Binary/File (not injecting the one that the victim is downloading), you have a downfall, the victim will notice that the received file is not doing what he is expecting from the file. But still, if you want to deliver a custom EXE/Binary/File (take a look to Veil Framework), you can customise Delivery plugin for FruityProxy based on extensions. regards, Hi, the idea is to inject a custom payload (probably in the raw format) into the file that victim is downloading. That way the victim can view, execute, run the file it downloaded and also the custom payload gets executed. It would be great if for example the bdfproxy could allow custom payload (in the raw format maybe...) to be defined by the "attacker".
|
|
|
Post by voxhel on Sept 22, 2015 18:03:48 GMT
|
|
|
Post by xtr4nge on Sept 23, 2015 10:11:25 GMT
I will add the new BDFproxy options as soon as I can regards,
|
|
|
Post by antani on Sept 24, 2015 19:54:37 GMT
About BDF... why the versions installed are not from the latest repo but a fork?! To keep sort of compatibility ?!
|
|
|
Post by xtr4nge on Sept 24, 2015 21:22:11 GMT
To keep control on the changes. It happened before, that they change something on the source code and options and the FruityWiFi module gets broken. That is why I do forks of some applications.
regards,
|
|
|
Post by pope523 on Nov 22, 2015 20:44:15 GMT
A box to enter shell commands to be executed, like on dd-wrt.
|
|