search

t3l3machus / Villain

Villain is a high level stage 0/1 C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
Other
3.64k stars 590 forks source link

[Feature Request] Add Shell Upgrade for Linux Payloads #112

Open Thy-GoD opened 1 year ago

Thy-GoD commented 1 year ago

I've discovered that the Linux Rev Shells aren't capable of being upgraded to a full shell, so things like sudo -l and tab completion don't work.

Ctrl + Z and trying the shell upgrade like usual doesn't work either.

Unless i'm missing something, are there plans to include this feature?

t3l3machus commented 1 year ago

Not like in the top priority list, but yeah, definitely!

Thy-GoD commented 1 year ago

Not like in the top priority list, but yeah, definitely!

Thanks for the reply, and no worries in priority, I really like this tool's idea!

DocMors commented 7 months ago

In the python shell this works very well. check https://pastebin.com/kb3a4SGx

Thy-GoD commented 7 months ago

In the python shell this works very well. check https://pastebin.com/kb3a4SGx

seems like a priv escalation and not an actual dumb shell upgrade.

Mag1cByt3s commented 4 months ago

I am having the same issue.

Trying to run interactive tools on linux machines fails because the shell is not a full PTY.

Thy-GoD commented 4 months ago

I am having the same issue.

Trying to run interactive tools on linux machines fails because the shell is not a full PTY.

Yeah unfortunately you'd have to get another shell, i dont actually use villain anymore due to this exact issue, I only ever use it for windows machines to generate payloads for me.

Mag1cByt3s commented 4 months ago

I am having the same issue. Trying to run interactive tools on linux machines fails because the shell is not a full PTY.

Yeah unfortunately you'd have to get another shell, i dont actually use villain anymore due to this exact issue, I only ever use it for windows machines to generate payloads for me.

May I ask what C2 you ended up using now?

Thy-GoD commented 4 months ago

I am having the same issue. Trying to run interactive tools on linux machines fails because the shell is not a full PTY.

Yeah unfortunately you'd have to get another shell, i dont actually use villain anymore due to this exact issue, I only ever use it for windows machines to generate payloads for me.

May I ask what C2 you ended up using now?

I don't use any C2, if i were to use one i'd probs use msfconsole.

I havn't gotten to try C2s like cobalt strike or empire yet, but msfconsole is probs the closest one i'd use.

If you ever find alternative to villain for this purpose, it'd help alot.

Also i believe it should be possible to recycle my tmux shell idea in here but that'd just be extra steps.