Search, generate & deliver Msfvenom payloads in an quick and easy way

Related tags

General UtilitiesEasy-MsfVenom
Overview

Logo

Goal

Search, generate & deliver payloads in an quick and easy way

Be as simple as possible BUT with all msfvenom payloads.

  • Ever lost time searching the right MSFpayload ? Use the fast filter.
  • Tired of inputing your IP, and defaults settings ? Let Easy-MsfVenom do it for you or ask for info.
  • Want only stageless payloads (-s) ? Only Meterpreter ones (-m)?
  • Want more complex options ? Want a hidden_tcp ? use -k or --keyword argument.

Easy-MsfVenom-screenshot

Features

  • fast search through all Venom payloads.
  • filter by Meterpreter / Bind / Reverse / architecture ...
  • integrated easy delivery:
    • Http server for Bind shells.
  • Integrated listener for Reverse shells:
    • launch of Msfconsole handler for Metasploit payloads.
    • Launch of netcat listener for other payloads.

Usage

Note: By default, if omitted, we'll get x86 bind staged payloads

  • Interactive Mode:

    • Win shells /payloads :

      ./Easy-MsfVenom.py  -t win

    • Linux shells /payloads :

      ./Easy-MsfVenom.py  -t lin

    • Web shells /payloads (PHP,ASP, Java) :

      ./Easy-MsfVenom.py  -t web

  • Some classics :

    • Meterpreter Windows(x86) Bind_TCP payloads: 
      ./Easy-MsfVenom.py  -t win -m
    • Meterpreter Windows(x86) Reverse TCP payloads: 
      ./Easy-MsfVenom.py  -t win -m -r

  • Custom search :

    • Hidden Meterpreter Windows(x86) Bind_TCP payloads
    ./Easy-MsfVenom.py  -t win -m -k hidden
    • Powershell payloads: 
      ./Easy-MsfVenom.py -k powershell

  • Full control :

    • Meterpreter Win(x64) Stageless Reverse_TCP payloads: 
      ./Easy-MsfVenom.py  -t win -a x64 -m -s -r -p 4444

TO-DO:

  • Add encoders with fast filters
  • Add batch payloads

Requirement

  • Python 3.x
  • Metasploit-framework

Installation

  git clone https://github.com/MatDupas/Easy-MsfVenom
  cd Easy-MsfVenom; ./Easy-MsfVenom.py --upgrade

Upgrade

To keep Easy-MsfVenom synchronized with all MsfVenom payloads, just do:

  ./Easy-MsfVenom.py --upgrade

Note: it is useful to also keep metasploit-framework updated sudo apt update; sudo apt install metasploit-framework (it is better to make backup before upgrading, just in case...)

Legal / Ethics

TL;DR: Don't be evil, stay on the right side

This software is for educational and Pentesting /red Teaming purposes only. As a reminder, Attacking targets without prior mutual consent is illegal. It is the end user’s responsibility to obey all applicable local, state and federal laws. The author assume no liability and no responsability for any misuse or damage caused by this software.

Easy-MsfVenom © 2021 by Mathieu Dupas is licensed under CC BY-NC 4.0

Owner
GitHub Repository
Display your calendar on the wallpaper.

wallCal Have your calendar appear as the wallpaper. disclaimer Use at your own risk. Don't blame me if you miss a meeting :-) Some parts of the script

7 Jun 14, 2022
Auto-generate /etc/hosts for HackTheBox machines

Auto-generate /etc/hosts for HackTheBox machines Save yourself some tedium on getting started on a new machine by having your /etc/hosts ready to go.

3 Feb 16, 2022
This tool lets you perform some quick tasks for CTFs and Pentesting.

This tool lets you convert strings and numbers between number bases (2, 8, 10 and 16) as well as ASCII text. You can use the IP address analyzer to find out details on IPv4 and perform abbreviation a

Ayomide Ayodele-Soyebo 1 Jul 16, 2022
Data Utilities e.g. for importing files to onetask

Use this repository to easily convert your source files (csv, txt, excel, json, html) into record-oriented JSON files that can be uploaded into onetask.

onetask.ai 1 Jul 18, 2022
Script to decrypt / import chromium (edge/chrome) cookies

Cloonie Script to decrypt / import chromium (edge/chrome) cookies. Requirements Install the python dependencies via pip: pip install -r requirements.t

Lorenzo Bernardi 5 Sep 13, 2022
This python program will display all SSID usernames and SSID passwords you once connected to your laptop

Windows-Wifi-password-extractor This python program will display all SSID usernames and SSID passwords you once connected to your laptop How to run th

Bhaskar Pal 3 Apr 26, 2022
A simulator for xkcd 2529's weirdly concrete problem

What is this? This is a quick hack implementation of a simulator for xkcd 2529's weirdly concrete problem. This is barely tested and I suck at computa

Reuben Steenekamp 6 Oct 27, 2021
A small python tool to get relevant values from SRI invoices

SriInvoiceProcessing A small python tool to get relevant values from SRI invoices Some useful info to run the tool Login into your SRI account and ret

Wladymir Brborich 2 Jan 07, 2022
An awesome tool to save articles from RSS feed to Pocket automatically.

RSS2Pocket An awesome tool to save articles from RSS feed to Pocket automatically. About the Project I used to use IFTTT to save articles from RSS fee

Hank Liao 10 Nov 12, 2022
python script to generate color coded resistor images

Resistor image generator I got nerdsniped into making this. It's not finished at all, and the code is messy. The end goal it generate a whole E-series

MichD 1 Nov 12, 2021
Fuzzy box is a quick program I wrote to fuzz a URL that is in the format https:// url 20characterstring.

What is this? Fuzzy box is a quick program I wrote to fuzz a URL that is in the format https://url/20characterstring.extension. I have redacted th

Graham Helton 1 Oct 19, 2021
Lark is a parsing toolkit for Python, built with a focus on ergonomics, performance and modularity.

Lark is a parsing toolkit for Python, built with a focus on ergonomics, performance and modularity.

Lark - Parsing Library & Toolkit 3.5k Jan 05, 2023
a demo show how to dump lldb info to ida.

用一个demo来聊聊动态trace 这个仓库能做什么? 帮助理解动态trace的思想。仓库内的demo,可操作,可实践。 动态trace核心思想: 动态记录一个函数内每一条指令的执行中产生的信息,并导入IDA,用来弥补IDA等静态分析工具的不足。 反编译看一下 先clone仓库,把hellolldb

25 Nov 28, 2022
A tool to create the basics of a project

Project-Scheduler Instalação Para instalar o Project Maker, você necessita está em um ambiente de desenvolvimento Linux ou wsl com alguma distro debia

2 Dec 17, 2021
A string extractor module for python

A string extractor module for python

Fayas Noushad 4 Jul 19, 2022
Python tool to check a web applications compliance with OWASP HTTP response headers best practices

Check Your Head A quick and easy way to check a web applications response headers!

Zak 6 Nov 09, 2021
JavaScript-style async programming for Python.

promisio JavaScript-style async programming for Python. Examples Create a promise-based async function using the promisify decorator. It works on both

Miguel Grinberg 191 Dec 30, 2022
Give you a better view of your Docker registry disk usage.

registry-du Give you a better view of your Docker registry disk usage. This small tool will analysis your Docker registry(vanilla or Harbor both work)

Nova Kwok 16 Jan 07, 2023
Handy Tool to check the availability of onion site and to extract the title of submitted onion links.

This tool helps is to quickly investigate a huge set of onion sites based by checking its availability which helps to filter out the inactive sites and collect the site title that might helps us to c

Balaji 13 Nov 25, 2022
The git for the Python Story Utility Package library.

SUP The git for the Python Story Utility Package library. Installation: Install SUP by simply running pip install psup in your terminal. Check out our

Enoki 6 Nov 27, 2022