I am working on Havoc C2 for Red Team Operations and found something unusual -
Whenever I execute shell command or dotnet inline-execute, It always take spacebar as next line and yeah - I know that. But if we run any executable like mimikatz.exe after uploading and using Shell command - It'll break even after specifying double-quotes.
Here I provided Screenshot - Kindly check, I provided double quotes and still it not working !!
EDIT: I tried semi-colon, single quote & double quotes too !!
As I can imagine, It'll be challenging for users to run complex commands or executables because there's many required scripts or tools which take Space in between example xyz.exe /user Administrator /password password1234
I request to look same for dotnet inline-execute and execute as these two are important, same as shell command.
This Space in between can break stuff !!
EDIT 2: I also noticed that dotnet execute having some issues.
Hope you understood
Thanks for your time
Did You Do a Pull First?
Latest (You performed a pull first)
Did You Try With the Dev Branch?
Yes (You tried using the dev branch but the problem persist)
Relevant log output
shell mimikatz privilege::debug "lsadump::lsa /inject /name:krbtgt" exit
[*] [C3D78BF1] Tasked demon to execute a shell command
[+] Send Task to Agent [228 bytes]
[+] Received Output [2935 bytes]:
.#####. mimikatz 2.2.0 (x64) #19041 Sep 19 2022 17:44:08
.## ^ ##. "A La Vie, A L'Amour" - (oe.eo)
## / \ ## /*** Benjamin DELPY `gentilkiwi` ( benjamin@gentilkiwi.com )
## \ / ## > https://blog.gentilkiwi.com/mimikatz
'## v ##' Vincent LE TOUX ( vincent.letoux@gmail.com )
'#####' > https://pingcastle.com / https://mysmartlogon.com ***/
mimikatz(commandline) # privilege::debug
Privilege '20' OK
mimikatz(commandline) # lsadump::lsa
Domain : DESKTOP-CJ2JH5D / S-1-5-21-1515082279-4082070643-2923322782
RID : 000001f4 (500)
User : Administrator
ERROR kuhl_m_lsadump_lsa_user ; SamQueryInformationUser c0000003
RID : 000001f7 (503)
User : DefaultAccount
ERROR kuhl_m_lsadump_lsa_user ; SamQueryInformationUser c0000003
RID : 000001f5 (501)
User : Guest
ERROR kuhl_m_lsadump_lsa_user ; SamQueryInformationUser c0000003
RID : 000003e9 (1001)
User :
ERROR kuhl_m_lsadump_lsa_user ; SamQueryInformationUser c0000003
RID : 000001f8 (504)
User : WDAGUtilityAccount
ERROR kuhl_m_lsadump_lsa_user ; SamQueryInformationUser c0000003
mimikatz(commandline) # /inject
ERROR mimikatz_doLocal ; "/inject" command of "standard" module not found !
Module : standard
Full name : Standard module
Description : Basic commands (does not require module name)
exit - Quit mimikatz
cls - Clear screen (doesn't work with redirections, like PsExec)
answer - Answer to the Ultimate Question of Life, the Universe, and Everything
coffee - Please, make me a coffee!
sleep - Sleep an amount of milliseconds
log - Log mimikatz input/output to file
base64 - Switch file input/output base64
version - Display some version informations
cd - Change or display current directory
localtime - Displays system local date and time (OJ command)
hostname - Displays system local hostname
mimikatz(commandline) # /name:krbtgt
ERROR mimikatz_doLocal ; "/name:krbtgt" command of "standard" module not found !
Module : standard
Full name : Standard module
Description : Basic commands (does not require module name)
exit - Quit mimikatz
cls - Clear screen (doesn't work with redirections, like PsExec)
answer - Answer to the Ultimate Question of Life, the Universe, and Everything
coffee - Please, make me a coffee!
sleep - Sleep an amount of milliseconds
log - Log mimikatz input/output to file
base64 - Switch file input/output base64
version - Display some version informations
cd - Change or display current directory
localtime - Displays system local date and time (OJ command)
hostname - Displays system local hostname
mimikatz(commandline) # exit
Bye!
Did You Read Over Your Issue First?
[X] I declare I made an effort and provided the necessary information for replication of the issue.
Contact Details
No response
What happened?
I am working on Havoc C2 for Red Team Operations and found something unusual -
Whenever I execute shell command or dotnet inline-execute, It always take spacebar as next line and yeah - I know that. But if we run any executable like mimikatz.exe after uploading and using Shell command - It'll break even after specifying double-quotes.
Here I provided Screenshot - Kindly check, I provided double quotes and still it not working !!
EDIT: I tried semi-colon, single quote & double quotes too !!
As I can imagine, It'll be challenging for users to run complex commands or executables because there's many required scripts or tools which take Space in between example xyz.exe /user Administrator /password password1234
I request to look same for dotnet inline-execute and execute as these two are important, same as shell command.
This Space in between can break stuff !!
EDIT 2: I also noticed that dotnet execute having some issues.
Hope you understood
Thanks for your time
Did You Do a Pull First?
Latest (You performed a pull first)
Did You Try With the Dev Branch?
Yes (You tried using the dev branch but the problem persist)
Relevant log output
Did You Read Over Your Issue First?