Windows (DOSfuscation)

Instalação

git clone https://github.com/danielbohannon/Invoke-DOSfuscation.git
cd Invoke-DOSfuscation
Import-Module .\Invoke-DOSfuscation.psd1
Invoke-DOSfuscation
Invoke-DOSfuscation> help

Assim que estivermos configurados, podemos começar a usar a ferramenta da seguinte forma:

Invoke-DOSfuscation> SET COMMAND type C:\Users\htb-student\Desktop\flag.txt
Invoke-DOSfuscation> encoding
Invoke-DOSfuscation\Encoding> 1

Finalmente, podemos tentar executar o comando ofuscado on CMDe vemos que ele realmente funciona conforme o esperado:

typ%TEMP:~-3,-2% %CommonProgramFiles:~17,-11%:\Users\h%TMP:~-13,-12%b-stu%SystemRoot:~-4,-3%ent%TMP:~-19,-18%%ALLUSERSPROFILE:~-4,-3%esktop\flag.%TMP:~-13,-12%xt

PreviousLinux (Bashfuscator)NextFile Upload Attacks

Last updated 10 months ago