September 24, 2022 at 12:27 PM
Why AutoIt?
- Plenty of examples online showing AutoIt being utilized for malware development but no general resource I could find that security folk new to the language can use to explore its capabilities and nuances.
- Ability to directly call external DLL and Windows API functions.
- Scripts can be executed using AutoIt3.exe (digitally signed binary) or compiled into standalone executables.
- Simplifies UI automation and interaction; GUI creation, simulating keystrokes and mouse movements, manipulating windows and processes.
- Very active community and countless user defined functions (UDFs).
OffensiveAutoIt scripts
The examples in this repo are purely PoCs; I've tested them, but not thoroughly. The scripts are intended to be compiled and used as standalone console application executables but it's not the only way they can be utilized.
- Plenty of examples online showing AutoIt being utilized for malware development but no general resource I could find that security folk new to the language can use to explore its capabilities and nuances.
- Ability to directly call external DLL and Windows API functions.
- Scripts can be executed using AutoIt3.exe (digitally signed binary) or compiled into standalone executables.
- Simplifies UI automation and interaction; GUI creation, simulating keystrokes and mouse movements, manipulating windows and processes.
- Very active community and countless user defined functions (UDFs).
OffensiveAutoIt scripts
The examples in this repo are purely PoCs; I've tested them, but not thoroughly. The scripts are intended to be compiled and used as standalone console application executables but it's not the only way they can be utilized.
