how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
@greyburns61702 ай бұрын
But is anyone else starting to feel like cyber security has pretty much won by now? Idk I guess rly bad actors doing physical penetration attacks is still happening. But the days of hacking your friends laptop to Rick roll him are pretty much dead. Thanks behavior based protection. I'm drunk
@greyburns61702 ай бұрын
You're my Arnold Schwarzenegger bro
@theoruiz-hidalgo21102 ай бұрын
Hi ! Do I need to use obf payload in order to use the upload tool ? I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
@HaxorTechTones2 ай бұрын
Make sure to add the file name to the path you want the file to be uploaded, not only the dir.
@theoruiz-hidalgo21102 ай бұрын
@@HaxorTechTones It seems better but still not working, when I keep my hard disk name it says : the generic path isn't resolved when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
@theoruiz-hidalgo21102 ай бұрын
Ok just got it !!! The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
@theoruiz-hidalgo21102 ай бұрын
@@HaxorTechTones And thx ! You're the best !
@theoruiz-hidalgo21102 ай бұрын
One last question, I tried connecting to an FTP server using Villain but kept blocking at the connection step, is it normal or ?
@andreadistasi88422 ай бұрын
Great work! I'd like to get to know you and chat a bit sometimes.
@igornemorssa29363 ай бұрын
Thx for your project . It is very fantastic
@hellresistor3 ай бұрын
nice job @t3l3machus ! For some reason upload wont work here, maybe because i am using ngrok.
@cadenfore82984 ай бұрын
Thanks for the walkthrough, new to reversing challenges and this is a good starter
@ooxoox1764 ай бұрын
Error parasiong LHOST, Invalid Ip or interface am trying to use ngrok ):
@madathalanithinreddy45944 ай бұрын
Hey can you help me with one question
@andreasclaudius90764 ай бұрын
obfuscate don t work anymore, can you say me tools for this?
@techteam05784 ай бұрын
Sir how to create toxssin certificate and private key.
@Pesarkhande664 ай бұрын
Hi.bro.please give a DigiSpark complete program to open android pin.so thanks.
@IvanLarsen-cr4pq4 ай бұрын
товарищ
@RaGhav3635 ай бұрын
Can you make one more vedio on payload obfuscatinon both for VBA and Powershell again ?
@codedspirit5 ай бұрын
And in rust... I love it man ♂️
@nsns79935 ай бұрын
Nice!
@greyburns61705 ай бұрын
Hahaha my computer agrees with you about AMSItrigger.. it refuses to let me download it even with defender off. My comps telling me im stupid
@greyburns61705 ай бұрын
Everytime I type in exactly what you typed it says "Required argument PAYLOAD not supplied" can anyone help me with this
@HaxorTechTones5 ай бұрын
The syntax has changed in the latest version. Type "help payload" for details or check out my channel for the most recent introduction.
@alimuhamed60845 ай бұрын
Sir, why can't I upload files?
@novianindy8875 ай бұрын
So that we have payload in ps1 script , what are ways to execute .ps1 script with a click? You cant expect user to right click and run the .ps1 file right😊
@bleuforcedz67276 ай бұрын
Very informative video.. Thanks 🌹
@HamsterLover13376 ай бұрын
Good tutorial, thanks
@Kingdd1os6 ай бұрын
Genius ❤
@BIZLOOK6 ай бұрын
It this work over internet by ngrok or something
@hellresistor3 ай бұрын
dig a little bit ;)
@Free.Education7866 ай бұрын
Please, if possible, cover these advanced topics like How to bypass Drupal CMS or other secured CMS? How to bypass HARD WAF protection that stops HTML, SQL, and XSS injection payloads? Payload single-double-triple encoding using Cyber-Chef? How to find the real origin IP of secured websites behind Cloudflare, Akamai, ModSecurity, AWS CDN, etc.,? How to bypass Hard WAF using SQLMAP or Burpsuite? How to find hidden vulnerable parameters and endpoints inside the .js and .jason files? How to find hidden admin pages, cPanel pages, and WHM pages ? Please cover these important topics. Thanks🎉❤
@novianindy8877 ай бұрын
Is it reversible?
@panagiotisioannidis5177 ай бұрын
are you greek i am?
@sudityashrivastav7 ай бұрын
just looking like a wow.
@migueltartarea7 ай бұрын
Hello, do you know any viable way that the payload villain can be persistent?
@erfanwork75067 ай бұрын
hi very good vid and fast command whats the attiny85 commands ?
@Pyroteq8 ай бұрын
I suck at coding, but you made this very easy to understand. Thank you.
@osvaldopereo42858 ай бұрын
you are amazing!!! How can upload to remote file path with blank spaces? = upload /localpath/text.txt emotepath\blank space\text.txt?
@user-zu5kl7tk8p8 ай бұрын
thank you for sharing !!
@RAVEN---9 ай бұрын
Hey pal remember the villain tool you made? Well after the new windows defender update the tool code gets flagged I was able to bypass it tho... Now the issue is, even though there is no issue in bypassing I am still not getting a reverse connection I only get it once I turn off the defender. Can you just look into it? Pls
@PlayStore-rb6gk9 ай бұрын
Sir plz make a video how to bypass metasploit payload
@berthold95829 ай бұрын
Woooooo
@berthold95829 ай бұрын
Ngrok nous facile les choses surtout pour l'achat du materiel
@Jamaal_Ahmed9 ай бұрын
Please make a video to port forwarding 🙏
@thepilotsparrow9 ай бұрын
Hello! is there a way to download stuff from the victim pc? I tried everything but couldn't maybe I just suck :*)
@HaxorTechTones9 ай бұрын
Hi, in an automated manner, like, "download /path/to/file", not yet unfortunately, but the feature will be added in a future update :)
@thepilotsparrow9 ай бұрын
@@HaxorTechTonesYoooo! You are the best
@Strategic.10 ай бұрын
Is there a better way to run it? like through an executable or something?
@firos538110 ай бұрын
wow nice talk. looking forward to more such conversations
@Jamaal_Ahmed10 ай бұрын
2023 not working , becouse we give a different payload , therefore not-working .
@F.M67110 ай бұрын
"Sorry that was greek" oh man that made me laugh. Good stuff, love to know this tech is still old but gold.
@elmehdioubouhouch10 ай бұрын
A new subscriber for this dude here from Morocco
@elmehdioubouhouch10 ай бұрын
You are amazing man i love the project keep it up
@TheQA24710 ай бұрын
This is 🔥 Can I suggest a nice-to-have: Ability to generate a report based on scope; capture screenshots & steps as well
@firosiam778610 ай бұрын
Cool mate ah if I may ask on another topic regarding a project I thought u were working on a project that helped obfuscate payloads automatically hws that coming is it still under development or is it not coming out ?
@HaxorTechTones10 ай бұрын
Hey, a beta version of that project exists, it's not public and will probably be merged into something bigger. It will take some time to be released.
@firosiam778610 ай бұрын
@@HaxorTechTones merged with villan I suppose that would be cool
Пікірлер
awesome it's work!
Greek ?
how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
But is anyone else starting to feel like cyber security has pretty much won by now? Idk I guess rly bad actors doing physical penetration attacks is still happening. But the days of hacking your friends laptop to Rick roll him are pretty much dead. Thanks behavior based protection. I'm drunk
You're my Arnold Schwarzenegger bro
Hi ! Do I need to use obf payload in order to use the upload tool ? I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
Make sure to add the file name to the path you want the file to be uploaded, not only the dir.
@@HaxorTechTones It seems better but still not working, when I keep my hard disk name it says : the generic path isn't resolved when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
Ok just got it !!! The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
@@HaxorTechTones And thx ! You're the best !
One last question, I tried connecting to an FTP server using Villain but kept blocking at the connection step, is it normal or ?
Great work! I'd like to get to know you and chat a bit sometimes.
Thx for your project . It is very fantastic
nice job @t3l3machus ! For some reason upload wont work here, maybe because i am using ngrok.
Thanks for the walkthrough, new to reversing challenges and this is a good starter
Error parasiong LHOST, Invalid Ip or interface am trying to use ngrok ):
Hey can you help me with one question
obfuscate don t work anymore, can you say me tools for this?
Sir how to create toxssin certificate and private key.
Hi.bro.please give a DigiSpark complete program to open android pin.so thanks.
товарищ
Can you make one more vedio on payload obfuscatinon both for VBA and Powershell again ?
And in rust... I love it man ♂️
Nice!
Hahaha my computer agrees with you about AMSItrigger.. it refuses to let me download it even with defender off. My comps telling me im stupid
Everytime I type in exactly what you typed it says "Required argument PAYLOAD not supplied" can anyone help me with this
The syntax has changed in the latest version. Type "help payload" for details or check out my channel for the most recent introduction.
Sir, why can't I upload files?
So that we have payload in ps1 script , what are ways to execute .ps1 script with a click? You cant expect user to right click and run the .ps1 file right😊
Very informative video.. Thanks 🌹
Good tutorial, thanks
Genius ❤
It this work over internet by ngrok or something
dig a little bit ;)
Please, if possible, cover these advanced topics like How to bypass Drupal CMS or other secured CMS? How to bypass HARD WAF protection that stops HTML, SQL, and XSS injection payloads? Payload single-double-triple encoding using Cyber-Chef? How to find the real origin IP of secured websites behind Cloudflare, Akamai, ModSecurity, AWS CDN, etc.,? How to bypass Hard WAF using SQLMAP or Burpsuite? How to find hidden vulnerable parameters and endpoints inside the .js and .jason files? How to find hidden admin pages, cPanel pages, and WHM pages ? Please cover these important topics. Thanks🎉❤
Is it reversible?
are you greek i am?
just looking like a wow.
Hello, do you know any viable way that the payload villain can be persistent?
hi very good vid and fast command whats the attiny85 commands ?
I suck at coding, but you made this very easy to understand. Thank you.
you are amazing!!! How can upload to remote file path with blank spaces? = upload /localpath/text.txt emotepath\blank space\text.txt?
thank you for sharing !!
Hey pal remember the villain tool you made? Well after the new windows defender update the tool code gets flagged I was able to bypass it tho... Now the issue is, even though there is no issue in bypassing I am still not getting a reverse connection I only get it once I turn off the defender. Can you just look into it? Pls
Sir plz make a video how to bypass metasploit payload
Woooooo
Ngrok nous facile les choses surtout pour l'achat du materiel
Please make a video to port forwarding 🙏
Hello! is there a way to download stuff from the victim pc? I tried everything but couldn't maybe I just suck :*)
Hi, in an automated manner, like, "download /path/to/file", not yet unfortunately, but the feature will be added in a future update :)
@@HaxorTechTonesYoooo! You are the best
Is there a better way to run it? like through an executable or something?
wow nice talk. looking forward to more such conversations
2023 not working , becouse we give a different payload , therefore not-working .
"Sorry that was greek" oh man that made me laugh. Good stuff, love to know this tech is still old but gold.
A new subscriber for this dude here from Morocco
You are amazing man i love the project keep it up
This is 🔥 Can I suggest a nice-to-have: Ability to generate a report based on scope; capture screenshots & steps as well
Cool mate ah if I may ask on another topic regarding a project I thought u were working on a project that helped obfuscate payloads automatically hws that coming is it still under development or is it not coming out ?
Hey, a beta version of that project exists, it's not public and will probably be merged into something bigger. It will take some time to be released.
@@HaxorTechTones merged with villan I suppose that would be cool