AdFind.zip from payloads requires a password

mitre / emu

This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense

https://caldera.mitre.org/

Apache License 2.0

28 stars 9 forks source link

AdFind.zip from payloads requires a password #41

Open arty-hlr opened 5 months ago

arty-hlr commented 5 months ago

Describe the bug AdFind.zip that is downloaded for the emu plugin now requires a password

To Reproduce Steps to reproduce the behavior:

./download_payloads.sh

Expected behavior All payloads are downloaded and unzipped.

Screenshots See here at the bottom in red, the zip is now protected with a password that is included in the zip itself (NotMalware)

Desktop:

OS: Kali
Browser: Firefox
Version: Caldera 4.2.0

marcopedrinazzi commented 3 months ago

The password is: NotMalware . When you extract the zip for the first time, dont write the password, press enter, a file password.txt will be created and it will contain the password.

arty-hlr commented 3 months ago

Yes. Still that doesn't work for a script and that password should just be included so that AdFind.exe can be extracted.