Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
The stories and information posted here are artistic works of fiction and falsehood. Only a fool would take anything posted here as fact.
Thread Rating:
  • 0 Vote(s) - 0 Average


EvilAbigail - Automated Linux evil maid attack filter_list
Author
Message
ZanGetsu Offline
Hi Im ZanGetsu
 *****
Registered (Gold)
Seven Years of Service
Posts: 362
Threads: 255
Reputation: 29

Points: 125NSP
Gold
EvilAbigail - Automated Linux evil maid attack 09-03-2017, 06:30 AM #1
[Image: Screenshot.png?raw=true]

  • Laptop left turned off with FDE turned on
  • Attacker boots from USB/CD/Network
  • Script executes and backdoors initrd
  • User returns to laptop, boots as normal
  • Backdoored initrd loads:
  • (Debian/Ubuntu/Kali) .so file into /sbin/init on boot, dropping a shell
  • (Fedora/CentOS) LD_PRELOAD .so into DefaultEnviroment, loaded globally, dropping a shell.
Supported Distros
  • Ubuntu 14.04.3
  • Debian 8.2.0
  • Kali 2.0
  • Fedora 23
  • CentOS 7
  • Current Features

python/meterpreter/reverse_https to compile time LHOST
FDE decryption password stored in meterpreter environment (getenv PASSWORD)

Download
[Image: Vs4P58c.png]

Reply







Users browsing this thread: 1 Guest(s)