tevora-threat/eternal_blue_powershell tevora-threat/eternal_blue_powershell

  • Stars
    star
    148
  • Rank 248,891 (Top 5 %)
  • Language
    PowerShell
  • Created over 7 years ago
  • Updated over 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
tevora-threat/eternal_blue_powershell
github

tevora-threat

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Port of eternal blue exploits to powershell

Eternal blue powershell exploit

Add your shellcode to line 619 in the following format: [Byte[]] $payload = [Byte[]](0xB9,0xC3,0x00)

import into cobalt or empire

then run invoke-eternableblue -target <target_ip> -max_attempts <num> -initial_grooms <num>

Example: Invoke-EternalBlue -target 10.0.100.106 -max_attempts 3 -initial_grooms 12

Tested with Cobalt strike generated beacon shellcode.

enjoy a shell, or a bluescreen

More Repositories

1

SharpView

C# implementation of harmj0y's PowerView
C#
872
star
2

Scout

Surveillance Detection Scout: Your Lookout on Autopilot
Vue
369
star
3

Dragnet

Your Social Engineering Sidekick
Vue
175
star
4

PowerView3-Aggressor

Cobalt Strike Aggressor script menu for Powerview/SharpView
125
star
5

aggressor-powerview

PowerView menu for Cobalt Strike
61
star
6

splunk_pentest_app

splunk_pentest_app
HTML
50
star
7

atomic_red_team_gui

Windows GUI/Execution Engine for Atomic Red Team Atomics
C#
32
star
8

rt_redirectors

Ansible role to configure redirectors for red team C2
27
star
9

SharpSQL

Quick and dirty .net console app for querying mssql servers.
C#
21
star
10

c2_reporter

Ingests logs/dbs from cobalt and empire and outputs an excel report with activity, sessions, and credentials
Python
21
star
11

SecSmash

Python
18
star
12

splunk_local_privesc

Splunk forwarder ez-pz local privesc tool.
Shell
10
star