github
/
metasploit-payloads
mirror of https://github.com/rapid7/metasploit-payloads
1
Fork 0
Code Releases Activity

Updated powershell extension binding IDs

This commit is contained in:
OJ 2020-05-08 17:17:25 +10:00
parent 1945275be3
commit e9e5894eca
No known key found for this signature in database
GPG Key ID: D5DC61FB93260597
3 changed files with 117 additions and 117 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

92
c/meterpreter/source/extensions/powershell/powershell_runner.cpp
View File

@ -20,7 +20,7 @@
0x74, 0x20, 0x62, 0x65, 0x20, 0x72, 0x75, 0x6E, 0x20, 0x69, 0x6E, 0x20,
0x44, 0x4F, 0x53, 0x20, 0x6D, 0x6F, 0x64, 0x65, 0x2E, 0x0D, 0x0D, 0x0A,
0x24, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x50, 0x45, 0x00, 0x00,
0x4C, 0x01, 0x03, 0x00, 0x48, 0xB6, 0xAB, 0x5E, 0x00, 0x00, 0x00, 0x00,
0x4C, 0x01, 0x03, 0x00, 0x42, 0x07, 0xB5, 0x5E, 0x00, 0x00, 0x00, 0x00,
0x00, 0x00, 0x00, 0x00, 0xE0, 0x00, 0x22, 0x20, 0x0B, 0x01, 0x30, 0x00,
0x00, 0xF4, 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x76, 0x13, 0x01, 0x00, 0x00, 0x20, 0x00, 0x00, 0x00, 0x20, 0x01, 0x00,
@ -141,7 +141,7 @@
0x73, 0x36, 0x00, 0x00, 0x06, 0x0A, 0x06, 0x20, 0xE8, 0x4E, 0x02, 0x00,
0x17, 0x6F, 0x39, 0x00, 0x00, 0x06, 0x06, 0x20, 0xE9, 0x4E, 0x01, 0x00,
0x72, 0x0B, 0x43, 0x00, 0x70, 0x6F, 0x3B, 0x00, 0x00, 0x06, 0x17, 0x06,
0x20, 0xB9, 0x0B, 0x00, 0x00, 0x6F, 0x32, 0x00, 0x00, 0x06, 0x28, 0x14,
0x20, 0xD1, 0x07, 0x00, 0x00, 0x6F, 0x32, 0x00, 0x00, 0x06, 0x28, 0x14,
0x00, 0x00, 0x06, 0x0B, 0x07, 0x2C, 0x38, 0x07, 0x16, 0x16, 0x28, 0x33,
0x00, 0x00, 0x06, 0x0C, 0x08, 0x20, 0x04, 0x00, 0x02, 0x00, 0x6F, 0x38,
0x00, 0x00, 0x0A, 0x6F, 0x39, 0x00, 0x00, 0x0A, 0x16, 0x31, 0x1A, 0x08,
@ -227,16 +227,16 @@
0x06, 0x0A, 0x06, 0x20, 0x29, 0x4E, 0x01, 0x00, 0x02, 0x6F, 0x3B, 0x00,
0x00, 0x06, 0x06, 0x20, 0x27, 0x4E, 0x01, 0x00, 0x03, 0x6F, 0x3B, 0x00,
0x00, 0x06, 0x06, 0x20, 0x28, 0x4E, 0x01, 0x00, 0x04, 0x6F, 0x3B, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0xCB, 0x32, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0xE3, 0x2E, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x28, 0x14, 0x00, 0x00, 0x06, 0x0B, 0x07, 0x2C, 0x38, 0x07,
0x16, 0x16, 0x28, 0x33, 0x00, 0x00, 0x06, 0x0C, 0x08, 0x20, 0x04, 0x00,
0x02, 0x00, 0x6F, 0x38, 0x00, 0x00, 0x0A, 0x6F, 0x39, 0x00, 0x00, 0x0A,
0x16, 0x31, 0x1A, 0x08, 0x20, 0x04, 0x00, 0x02, 0x00, 0x6F, 0x38, 0x00,
0x00, 0x0A, 0x16, 0x6F, 0x3A, 0x00, 0x00, 0x0A, 0xA5, 0x51, 0x00, 0x00,
0x01, 0x2D, 0x02, 0x17, 0x2A, 0x16, 0x2A, 0x72, 0x9B, 0x43, 0x00, 0x70,
0x73, 0x4D, 0x00, 0x00, 0x0A, 0x7A, 0x3A, 0x20, 0xC9, 0x32, 0x00, 0x00,
0x02, 0x03, 0x04, 0x28, 0x1A, 0x00, 0x00, 0x06, 0x2A, 0x3A, 0x20, 0xCA,
0x32, 0x00, 0x00, 0x02, 0x03, 0x04, 0x28, 0x1A, 0x00, 0x00, 0x06, 0x2A,
0x73, 0x4D, 0x00, 0x00, 0x0A, 0x7A, 0x3A, 0x20, 0xE1, 0x2E, 0x00, 0x00,
0x02, 0x03, 0x04, 0x28, 0x1A, 0x00, 0x00, 0x06, 0x2A, 0x3A, 0x20, 0xE2,
0x2E, 0x00, 0x00, 0x02, 0x03, 0x04, 0x28, 0x1A, 0x00, 0x00, 0x06, 0x2A,
0x13, 0x30, 0x03, 0x00, 0x7E, 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x11,
0x73, 0x36, 0x00, 0x00, 0x06, 0x0A, 0x06, 0x20, 0x29, 0x4E, 0x01, 0x00,
0x03, 0x6F, 0x3B, 0x00, 0x00, 0x06, 0x06, 0x20, 0x2A, 0x4E, 0x01, 0x00,
@ -250,7 +250,7 @@
0x01, 0x2D, 0x02, 0x17, 0x2A, 0x16, 0x2A, 0x72, 0x9B, 0x43, 0x00, 0x70,
0x73, 0x4D, 0x00, 0x00, 0x0A, 0x7A, 0x00, 0x00, 0x13, 0x30, 0x03, 0x00,
0x5E, 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x11, 0x73, 0x36, 0x00, 0x00,
0x06, 0x0A, 0x17, 0x06, 0x20, 0xCE, 0x32, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x06, 0x0A, 0x17, 0x06, 0x20, 0xE6, 0x2E, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x28, 0x14, 0x00, 0x00, 0x06, 0x0B, 0x07, 0x2C, 0x38, 0x07,
0x16, 0x16, 0x28, 0x33, 0x00, 0x00, 0x06, 0x0C, 0x08, 0x20, 0x04, 0x00,
0x02, 0x00, 0x6F, 0x38, 0x00, 0x00, 0x0A, 0x6F, 0x39, 0x00, 0x00, 0x0A,
@ -260,7 +260,7 @@
0x73, 0x4D, 0x00, 0x00, 0x0A, 0x7A, 0x00, 0x00, 0x13, 0x30, 0x03, 0x00,
0x6A, 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x11, 0x73, 0x36, 0x00, 0x00,
0x06, 0x0A, 0x06, 0x20, 0x25, 0x4E, 0x01, 0x00, 0x02, 0x6F, 0x3B, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0xCC, 0x32, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0xE4, 0x2E, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x28, 0x14, 0x00, 0x00, 0x06, 0x0B, 0x07, 0x2C, 0x38, 0x07,
0x16, 0x16, 0x28, 0x33, 0x00, 0x00, 0x06, 0x0C, 0x08, 0x20, 0x04, 0x00,
0x02, 0x00, 0x6F, 0x38, 0x00, 0x00, 0x0A, 0x6F, 0x39, 0x00, 0x00, 0x0A,
@ -271,7 +271,7 @@
0x06, 0x2A, 0x1E, 0x17, 0x28, 0x1F, 0x00, 0x00, 0x06, 0x2A, 0x00, 0x00,
0x13, 0x30, 0x03, 0x00, 0x92, 0x00, 0x00, 0x00, 0x0A, 0x00, 0x00, 0x11,
0x73, 0x36, 0x00, 0x00, 0x06, 0x0A, 0x06, 0x20, 0x24, 0x4E, 0x02, 0x00,
0x02, 0x6F, 0x39, 0x00, 0x00, 0x06, 0x17, 0x06, 0x20, 0xCD, 0x32, 0x00,
0x02, 0x6F, 0x39, 0x00, 0x00, 0x06, 0x17, 0x06, 0x20, 0xE5, 0x2E, 0x00,
0x00, 0x6F, 0x32, 0x00, 0x00, 0x06, 0x28, 0x14, 0x00, 0x00, 0x06, 0x0B,
0x07, 0x2C, 0x60, 0x07, 0x16, 0x16, 0x28, 0x33, 0x00, 0x00, 0x06, 0x0C,
0x08, 0x20, 0x04, 0x00, 0x02, 0x00, 0x6F, 0x38, 0x00, 0x00, 0x0A, 0x6F,
@ -297,7 +297,7 @@
0x0D, 0x72, 0x19, 0x45, 0x00, 0x70, 0x07, 0x04, 0x28, 0x52, 0x00, 0x00,
0x0A, 0x0B, 0x72, 0x39, 0x45, 0x00, 0x70, 0x07, 0x28, 0x51, 0x00, 0x00,
0x0A, 0x0B, 0x06, 0x20, 0x84, 0x4E, 0x01, 0x00, 0x07, 0x6F, 0x3B, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0x29, 0x23, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x17, 0x06, 0x20, 0x41, 0x1F, 0x00, 0x00, 0x6F, 0x32, 0x00,
0x00, 0x06, 0x28, 0x14, 0x00, 0x00, 0x06, 0x0C, 0x08, 0x39, 0xF9, 0x01,
0x00, 0x00, 0x08, 0x16, 0x16, 0x28, 0x33, 0x00, 0x00, 0x06, 0x0D, 0x09,
0x6F, 0x53, 0x00, 0x00, 0x0A, 0x6F, 0x54, 0x00, 0x00, 0x0A, 0x13, 0x04,
@ -4870,8 +4870,8 @@
0x6E, 0x00, 0x74, 0x00, 0x4E, 0x00, 0x61, 0x00, 0x6D, 0x00, 0x65, 0x00,
0x00, 0x03, 0x24, 0x00, 0x00, 0x0F, 0x7B, 0x00, 0x30, 0x00, 0x7D, 0x00,
0x5C, 0x00, 0x7B, 0x00, 0x31, 0x00, 0x7D, 0x00, 0x00, 0x00, 0x00, 0x00,
0xBD, 0x0B, 0x7B, 0xFE, 0xCC, 0x9C, 0x53, 0x42, 0x91, 0x3E, 0x78, 0xDD,
0xB9, 0x49, 0xA5, 0x65, 0x00, 0x04, 0x20, 0x01, 0x01, 0x08, 0x03, 0x20,
0xA2, 0x2C, 0xE4, 0x38, 0x3B, 0x56, 0xCC, 0x4B, 0xBF, 0xC3, 0x32, 0xC5,
0x6D, 0xB9, 0xAB, 0x3D, 0x00, 0x04, 0x20, 0x01, 0x01, 0x08, 0x03, 0x20,
0x00, 0x01, 0x05, 0x20, 0x01, 0x01, 0x11, 0x11, 0x04, 0x20, 0x01, 0x01,
0x0E, 0x04, 0x20, 0x01, 0x01, 0x02, 0x03, 0x20, 0x00, 0x02, 0x05, 0x15,
0x12, 0x51, 0x01, 0x0E, 0x04, 0x20, 0x00, 0x13, 0x00, 0x03, 0x20, 0x00,
@ -4979,12 +4979,12 @@
0x41, 0x05, 0x07, 0x01, 0x12, 0x80, 0x84, 0x08, 0xB7, 0x7A, 0x5C, 0x56,
0x19, 0x34, 0xE0, 0x89, 0x08, 0x31, 0xBF, 0x38, 0x56, 0xAD, 0x36, 0x4E,
0x35, 0x08, 0xB0, 0x3F, 0x5F, 0x7F, 0x11, 0xD5, 0x0A, 0x3A, 0x04, 0x00,
0x00, 0x00, 0x00, 0x04, 0xE8, 0x03, 0x00, 0x00, 0x04, 0xB8, 0x0B, 0x00,
0x00, 0x04, 0xA0, 0x0F, 0x00, 0x00, 0x04, 0x88, 0x13, 0x00, 0x00, 0x04,
0x40, 0x1F, 0x00, 0x00, 0x04, 0x28, 0x23, 0x00, 0x00, 0x04, 0xF8, 0x2A,
0x00, 0x00, 0x04, 0xE0, 0x2E, 0x00, 0x00, 0x04, 0xC8, 0x32, 0x00, 0x00,
0x04, 0xB0, 0x36, 0x00, 0x00, 0x04, 0x98, 0x3A, 0x00, 0x00, 0x04, 0x80,
0x3E, 0x00, 0x00, 0x04, 0x68, 0x42, 0x00, 0x00, 0x04, 0x50, 0x46, 0x00,
0x00, 0x00, 0x00, 0x04, 0xE8, 0x03, 0x00, 0x00, 0x04, 0xD0, 0x07, 0x00,
0x00, 0x04, 0xB8, 0x0B, 0x00, 0x00, 0x04, 0xA0, 0x0F, 0x00, 0x00, 0x04,
0x58, 0x1B, 0x00, 0x00, 0x04, 0x40, 0x1F, 0x00, 0x00, 0x04, 0x10, 0x27,
0x00, 0x00, 0x04, 0xF8, 0x2A, 0x00, 0x00, 0x04, 0xE0, 0x2E, 0x00, 0x00,
0x04, 0xC8, 0x32, 0x00, 0x00, 0x04, 0xB0, 0x36, 0x00, 0x00, 0x04, 0x98,
0x3A, 0x00, 0x00, 0x04, 0x80, 0x3E, 0x00, 0x00, 0x04, 0x68, 0x42, 0x00,
0x00, 0x04, 0x01, 0x00, 0x00, 0x00, 0x04, 0x02, 0x00, 0x00, 0x00, 0x04,
0x03, 0x00, 0x00, 0x00, 0x04, 0x04, 0x00, 0x00, 0x00, 0x04, 0x05, 0x00,
0x00, 0x00, 0x04, 0x06, 0x00, 0x00, 0x00, 0x04, 0x07, 0x00, 0x00, 0x00,
@ -5047,31 +5047,31 @@
0x04, 0x00, 0x00, 0x04, 0x56, 0x04, 0x00, 0x00, 0x04, 0x57, 0x04, 0x00,
0x00, 0x04, 0x58, 0x04, 0x00, 0x00, 0x04, 0x59, 0x04, 0x00, 0x00, 0x04,
0x5A, 0x04, 0x00, 0x00, 0x04, 0x5B, 0x04, 0x00, 0x00, 0x04, 0x5C, 0x04,
0x00, 0x00, 0x04, 0x5D, 0x04, 0x00, 0x00, 0x04, 0xB9, 0x0B, 0x00, 0x00,
0x04, 0xBA, 0x0B, 0x00, 0x00, 0x04, 0xBB, 0x0B, 0x00, 0x00, 0x04, 0xBC,
0x0B, 0x00, 0x00, 0x04, 0xBD, 0x0B, 0x00, 0x00, 0x04, 0xBE, 0x0B, 0x00,
0x00, 0x04, 0xBF, 0x0B, 0x00, 0x00, 0x04, 0xA1, 0x0F, 0x00, 0x00, 0x04,
0xA2, 0x0F, 0x00, 0x00, 0x04, 0xA3, 0x0F, 0x00, 0x00, 0x04, 0xA4, 0x0F,
0x00, 0x00, 0x04, 0xA5, 0x0F, 0x00, 0x00, 0x04, 0xA6, 0x0F, 0x00, 0x00,
0x04, 0xA7, 0x0F, 0x00, 0x00, 0x04, 0xA8, 0x0F, 0x00, 0x00, 0x04, 0xA9,
0x0F, 0x00, 0x00, 0x04, 0xAA, 0x0F, 0x00, 0x00, 0x04, 0xAB, 0x0F, 0x00,
0x00, 0x04, 0xAC, 0x0F, 0x00, 0x00, 0x04, 0xAD, 0x0F, 0x00, 0x00, 0x04,
0xAE, 0x0F, 0x00, 0x00, 0x04, 0xAF, 0x0F, 0x00, 0x00, 0x04, 0xB0, 0x0F,
0x00, 0x00, 0x04, 0x89, 0x13, 0x00, 0x00, 0x04, 0x8A, 0x13, 0x00, 0x00,
0x04, 0x8B, 0x13, 0x00, 0x00, 0x04, 0x8C, 0x13, 0x00, 0x00, 0x04, 0x8D,
0x13, 0x00, 0x00, 0x04, 0x8E, 0x13, 0x00, 0x00, 0x04, 0x8F, 0x13, 0x00,
0x00, 0x04, 0x41, 0x1F, 0x00, 0x00, 0x04, 0x29, 0x23, 0x00, 0x00, 0x04,
0xF9, 0x2A, 0x00, 0x00, 0x04, 0xE1, 0x2E, 0x00, 0x00, 0x04, 0xC9, 0x32,
0x00, 0x00, 0x04, 0xCA, 0x32, 0x00, 0x00, 0x04, 0xCB, 0x32, 0x00, 0x00,
0x04, 0xCC, 0x32, 0x00, 0x00, 0x04, 0xCD, 0x32, 0x00, 0x00, 0x04, 0xCE,
0x32, 0x00, 0x00, 0x04, 0xB1, 0x36, 0x00, 0x00, 0x04, 0xB2, 0x36, 0x00,
0x00, 0x04, 0x99, 0x3A, 0x00, 0x00, 0x04, 0x9A, 0x3A, 0x00, 0x00, 0x04,
0x9B, 0x3A, 0x00, 0x00, 0x04, 0x9C, 0x3A, 0x00, 0x00, 0x04, 0x81, 0x3E,
0x00, 0x00, 0x04, 0x82, 0x3E, 0x00, 0x00, 0x04, 0x83, 0x3E, 0x00, 0x00,
0x04, 0x84, 0x3E, 0x00, 0x00, 0x04, 0x85, 0x3E, 0x00, 0x00, 0x04, 0x86,
0x3E, 0x00, 0x00, 0x04, 0x87, 0x3E, 0x00, 0x00, 0x04, 0x88, 0x3E, 0x00,
0x00, 0x04, 0x89, 0x3E, 0x00, 0x00, 0x04, 0x69, 0x42, 0x00, 0x00, 0x04,
0x51, 0x46, 0x00, 0x00, 0x04, 0x00, 0x00, 0x01, 0x00, 0x04, 0x00, 0x00,
0x00, 0x00, 0x04, 0x5D, 0x04, 0x00, 0x00, 0x04, 0xD1, 0x07, 0x00, 0x00,
0x04, 0xD2, 0x07, 0x00, 0x00, 0x04, 0xD3, 0x07, 0x00, 0x00, 0x04, 0xD4,
0x07, 0x00, 0x00, 0x04, 0xD5, 0x07, 0x00, 0x00, 0x04, 0xD6, 0x07, 0x00,
0x00, 0x04, 0xD7, 0x07, 0x00, 0x00, 0x04, 0xB9, 0x0B, 0x00, 0x00, 0x04,
0xBA, 0x0B, 0x00, 0x00, 0x04, 0xBB, 0x0B, 0x00, 0x00, 0x04, 0xBC, 0x0B,
0x00, 0x00, 0x04, 0xBD, 0x0B, 0x00, 0x00, 0x04, 0xBE, 0x0B, 0x00, 0x00,
0x04, 0xBF, 0x0B, 0x00, 0x00, 0x04, 0xC0, 0x0B, 0x00, 0x00, 0x04, 0xC1,
0x0B, 0x00, 0x00, 0x04, 0xC2, 0x0B, 0x00, 0x00, 0x04, 0xC3, 0x0B, 0x00,
0x00, 0x04, 0xC4, 0x0B, 0x00, 0x00, 0x04, 0xC5, 0x0B, 0x00, 0x00, 0x04,
0xC6, 0x0B, 0x00, 0x00, 0x04, 0xC7, 0x0B, 0x00, 0x00, 0x04, 0xC8, 0x0B,
0x00, 0x00, 0x04, 0xA1, 0x0F, 0x00, 0x00, 0x04, 0xA2, 0x0F, 0x00, 0x00,
0x04, 0xA3, 0x0F, 0x00, 0x00, 0x04, 0xA4, 0x0F, 0x00, 0x00, 0x04, 0xA5,
0x0F, 0x00, 0x00, 0x04, 0xA6, 0x0F, 0x00, 0x00, 0x04, 0xA7, 0x0F, 0x00,
0x00, 0x04, 0x59, 0x1B, 0x00, 0x00, 0x04, 0x41, 0x1F, 0x00, 0x00, 0x04,
0x11, 0x27, 0x00, 0x00, 0x04, 0xF9, 0x2A, 0x00, 0x00, 0x04, 0xE1, 0x2E,
0x00, 0x00, 0x04, 0xE2, 0x2E, 0x00, 0x00, 0x04, 0xE3, 0x2E, 0x00, 0x00,
0x04, 0xE4, 0x2E, 0x00, 0x00, 0x04, 0xE5, 0x2E, 0x00, 0x00, 0x04, 0xE6,
0x2E, 0x00, 0x00, 0x04, 0xC9, 0x32, 0x00, 0x00, 0x04, 0xCA, 0x32, 0x00,
0x00, 0x04, 0xB1, 0x36, 0x00, 0x00, 0x04, 0xB2, 0x36, 0x00, 0x00, 0x04,
0xB3, 0x36, 0x00, 0x00, 0x04, 0xB4, 0x36, 0x00, 0x00, 0x04, 0x99, 0x3A,
0x00, 0x00, 0x04, 0x9A, 0x3A, 0x00, 0x00, 0x04, 0x9B, 0x3A, 0x00, 0x00,
0x04, 0x9C, 0x3A, 0x00, 0x00, 0x04, 0x9D, 0x3A, 0x00, 0x00, 0x04, 0x9E,
0x3A, 0x00, 0x00, 0x04, 0x9F, 0x3A, 0x00, 0x00, 0x04, 0xA0, 0x3A, 0x00,
0x00, 0x04, 0xA1, 0x3A, 0x00, 0x00, 0x04, 0x81, 0x3E, 0x00, 0x00, 0x04,
0x69, 0x42, 0x00, 0x00, 0x04, 0x00, 0x00, 0x01, 0x00, 0x04, 0x00, 0x00,
0x02, 0x00, 0x04, 0x00, 0x00, 0x04, 0x00, 0x04, 0x00, 0x00, 0x08, 0x00,
0x04, 0x00, 0x00, 0x10, 0x00, 0x04, 0x00, 0x00, 0x20, 0x00, 0x04, 0x00,
0x00, 0x00, 0x40, 0x04, 0x00, 0x00, 0x00, 0x80, 0x04, 0x00, 0x00, 0x3F,
@ -5213,10 +5213,10 @@
0x39, 0x34, 0x31, 0x61, 0x2D, 0x33, 0x66, 0x62, 0x38, 0x32, 0x36, 0x63,
0x35, 0x30, 0x35, 0x30, 0x39, 0x00, 0x00, 0x0C, 0x01, 0x00, 0x07, 0x31,
0x2E, 0x30, 0x2E, 0x30, 0x2E, 0x30, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x48, 0xB6, 0xAB, 0x5E, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00, 0x00, 0x00,
0x42, 0x07, 0xB5, 0x5E, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00, 0x00, 0x00,
0x1C, 0x01, 0x00, 0x00, 0x08, 0x12, 0x01, 0x00, 0x08, 0xF4, 0x00, 0x00,
0x52, 0x53, 0x44, 0x53, 0xE6, 0x1E, 0x7C, 0x76, 0x69, 0x5B, 0xA7, 0x4B,
0x9B, 0x7F, 0xA4, 0x76, 0xD7, 0xF1, 0x9D, 0xE7, 0x01, 0x00, 0x00, 0x00,
0x52, 0x53, 0x44, 0x53, 0x2A, 0x93, 0x3D, 0xD9, 0xA4, 0x62, 0x32, 0x41,
0xB0, 0x18, 0x05, 0xB5, 0xE2, 0x0B, 0x3F, 0xEA, 0x01, 0x00, 0x00, 0x00,
0x5A, 0x3A, 0x5C, 0x6D, 0x65, 0x74, 0x61, 0x73, 0x70, 0x6C, 0x6F, 0x69,
0x74, 0x2D, 0x70, 0x61, 0x79, 0x6C, 0x6F, 0x61, 0x64, 0x73, 0x5C, 0x70,
0x6F, 0x77, 0x65, 0x72, 0x73, 0x68, 0x65, 0x6C, 0x6C, 0x5C, 0x4D, 0x53,

2
c/meterpreter/source/extensions/powershell/powershell_runner.h
View File

@ -1,6 +1,6 @@
/*!
* @file powershell_runner.h
* @brief This file was generated at 05/01/2020 05:40:30 UTC, do not modify directly.
* @brief This file was generated at 05/08/2020 07:16:29 UTC, do not modify directly.
*/
#ifndef _METERPRETER_SOURCE_EXTENSION_POWERSHELL_RUNNER_H

140
powershell/MSF.Powershell/Meterpreter/CommandId.cs
View File

@ -7,19 +7,19 @@ namespace MSF.Powershell.Meterpreter
{
Core = 0,
Stdapi = 1000,
Priv = 3000,
Extapi = 4000,
Sniffer = 5000,
Winpmem = 8000,
Kiwi = 9000,
Unhook = 11000,
Espia = 12000,
Incognito = 13000,
Python = 14000,
Powershell = 15000,
Lanattacks = 16000,
Peinjector = 17000,
Mimikatz = 18000,
Priv = 2000,
Extapi = 3000,
Sniffer = 4000,
Winpmem = 7000,
Kiwi = 8000,
Unhook = 10000,
Espia = 11000,
Incognito = 12000,
Python = 13000,
Powershell = 14000,
Lanattacks = 15000,
Peinjector = 16000,
Mimikatz = 17000,
}
public enum CommandId
@ -174,63 +174,63 @@ namespace MSF.Powershell.Meterpreter
StdapiAudioMicStart = 1115,
StdapiAudioMicStop = 1116,
StdapiAudioMicList = 1117,
PrivElevateGetsystem = 3001,
PrivFsBlankDirectoryMace = 3002,
PrivFsBlankFileMace = 3003,
PrivFsGetFileMace = 3004,
PrivFsSetFileMace = 3005,
PrivFsSetFileMaceFromFile = 3006,
PrivPasswdGetSamHashes = 3007,
ExtapiAdsiDomainQuery = 4001,
ExtapiClipboardGetData = 4002,
ExtapiClipboardMonitorDump = 4003,
ExtapiClipboardMonitorPause = 4004,
ExtapiClipboardMonitorPurge = 4005,
ExtapiClipboardMonitorResume = 4006,
ExtapiClipboardMonitorStart = 4007,
ExtapiClipboardMonitorStop = 4008,
ExtapiClipboardSetData = 4009,
ExtapiNtdsParse = 4010,
ExtapiPageantSendQuery = 4011,
ExtapiServiceControl = 4012,
ExtapiServiceEnum = 4013,
ExtapiServiceQuery = 4014,
ExtapiWindowEnum = 4015,
ExtapiWmiQuery = 4016,
SnifferCaptureDump = 5001,
SnifferCaptureDumpRead = 5002,
SnifferCaptureRelease = 5003,
SnifferCaptureStart = 5004,
SnifferCaptureStats = 5005,
SnifferCaptureStop = 5006,
SnifferInterfaces = 5007,
WinpmemDumpRam = 8001,
KiwiExecCmd = 9001,
UnhookPe = 11001,
EspiaImageGetDevScreen = 12001,
IncognitoAddGroupUser = 13001,
IncognitoAddLocalgroupUser = 13002,
IncognitoAddUser = 13003,
IncognitoImpersonateToken = 13004,
IncognitoListTokens = 13005,
IncognitoSnarfHashes = 13006,
PythonExecute = 14001,
PythonReset = 14002,
PowershellAssemblyLoad = 15001,
PowershellExecute = 15002,
PowershellSessionRemove = 15003,
PowershellShell = 15004,
LanattacksAddTftpFile = 16001,
LanattacksDhcpLog = 16002,
LanattacksResetDhcp = 16003,
LanattacksResetTftp = 16004,
LanattacksSetDhcpOption = 16005,
LanattacksStartDhcp = 16006,
LanattacksStartTftp = 16007,
LanattacksStopDhcp = 16008,
LanattacksStopTftp = 16009,
PeinjectorInjectShellcode = 17001,
MimikatzCustomCommand = 18001,
PrivElevateGetsystem = 2001,
PrivFsBlankDirectoryMace = 2002,
PrivFsBlankFileMace = 2003,
PrivFsGetFileMace = 2004,
PrivFsSetFileMace = 2005,
PrivFsSetFileMaceFromFile = 2006,
PrivPasswdGetSamHashes = 2007,
ExtapiAdsiDomainQuery = 3001,
ExtapiClipboardGetData = 3002,
ExtapiClipboardMonitorDump = 3003,
ExtapiClipboardMonitorPause = 3004,
ExtapiClipboardMonitorPurge = 3005,
ExtapiClipboardMonitorResume = 3006,
ExtapiClipboardMonitorStart = 3007,
ExtapiClipboardMonitorStop = 3008,
ExtapiClipboardSetData = 3009,
ExtapiNtdsParse = 3010,
ExtapiPageantSendQuery = 3011,
ExtapiServiceControl = 3012,
ExtapiServiceEnum = 3013,
ExtapiServiceQuery = 3014,
ExtapiWindowEnum = 3015,
ExtapiWmiQuery = 3016,
SnifferCaptureDump = 4001,
SnifferCaptureDumpRead = 4002,
SnifferCaptureRelease = 4003,
SnifferCaptureStart = 4004,
SnifferCaptureStats = 4005,
SnifferCaptureStop = 4006,
SnifferInterfaces = 4007,
WinpmemDumpRam = 7001,
KiwiExecCmd = 8001,
UnhookPe = 10001,
EspiaImageGetDevScreen = 11001,
IncognitoAddGroupUser = 12001,
IncognitoAddLocalgroupUser = 12002,
IncognitoAddUser = 12003,
IncognitoImpersonateToken = 12004,
IncognitoListTokens = 12005,
IncognitoSnarfHashes = 12006,
PythonExecute = 13001,
PythonReset = 13002,
PowershellAssemblyLoad = 14001,
PowershellExecute = 14002,
PowershellSessionRemove = 14003,
PowershellShell = 14004,
LanattacksAddTftpFile = 15001,
LanattacksDhcpLog = 15002,
LanattacksResetDhcp = 15003,
LanattacksResetTftp = 15004,
LanattacksSetDhcpOption = 15005,
LanattacksStartDhcp = 15006,
LanattacksStartTftp = 15007,
LanattacksStopDhcp = 15008,
LanattacksStopTftp = 15009,
PeinjectorInjectShellcode = 16001,
MimikatzCustomCommand = 17001,
}
}