f0rb1dd3n
commented
5 years ago Hey bro,
1 - thank you for reporting that. 2 - The main reason that I did that, is to hide the persistence configuration. And can hide configuration that will be loaded in boot time. There is other ways to persistence, and I am thinking in publish that too.
3 - I will consider that. 4 - I will consider that too. 5 - there is some issues that I found too, and i need to change. And I need to add one hook to improve process hiding.
So, thank you your words, and thanks to report those things, i am going to consider all of it to the next updates. I am just too busy to update the code, but I will.
iusearch
8887-eth
1、bin/packet send magic packet checksum problem
Through multiple tests, the packet sending magic packet, TCP/UDP/ICMP checksum are not correct, in most of the network environment the packet will be drop, Hope can solve this problem:)
2、File content tampering usage scenarios? Hidden file content, not by other user mode application reads, what is the meaning of the content hidden? Suggestion add program can read the hidden content in white list function, such as sh, bash, PHP, Java process such as the function, the white list can be configured
3.Suggest to add hidden process name function with the prefix
4、About the clicent enhancements a、Like MSF add of reverse shell session management capabilities b、Add like vi use "!ps -ef" to exec the command of the local host capabilities c、For Centos reverse shell, the default does not contain the/usr/sbin path, execute the command is not very convenient,Whether can add the path by default?
Finally, to thank f0rb1dd3n provide so stable to use project,very cool~!