Jump to content

[PAYLOAD] psh_DownloadExec


Recommended Posts

Yo, it is quite neat and all, but what do you mean faster than HID strokes? Once you've opened powershell all you need to do is tell it to run a .ps1 script sitting right next to the payload and it'll do the rest without HID strokes.

How is it faster?

Link to post
Share on other sites

The benefit of this approach, depending on the Powershell command, is that nothing ever touches disk and it's a little lower profile than attaching a USB mass storage drive to the computer. Hell, there may even be GP that disables that.

Grabbing the script from the web server is essentially the same as grabbing it from the mass storage right?

There are multiple ways of accomplishing this, however "web" deilvery is tried and true and not reliant on mass storage.

Speed Scenario: You have a unicorn-encoded payload you want to execute. Instead of waiting for the entire payload to be typed out on the victim (~7K of text), you just have the HID type out the ~238 bytes of text and go.

Edited by LowValueTarget
Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...