Skip to content
/ postex-tools Public

A set of libraries and accompanying tools for post-exploitation, written in Golang.

License

GPL-3.0 license
10 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ofasgard/postex-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

60 Commits
postex
postex
 
 
tools
tools
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
build.sh
build.sh
 
 
go.mod
go.mod
 
 

Repository files navigation

postex-tools

A set of libraries and accompanying tools for post-exploitation, written in Golang. Intended to be a simple and straightforward toolbox for post-exploitation binaries that you can easily cross compile. For use on engagements where a standard Meterpreter payload won't cut it.

This project is split into two parts:

  • The postex package contains various functions that should be useful for general post-exploitation.
  • The tools folder contains sample Go programs that use the postex package to do things like open reverse shells or exfiltrate data.

Tool List

Currently, this project includes the following functional tools, built using the postex package:

  • shell-reverse is an ncat-style reverse shell. Supports shells sent over TCP, UDP and TLS (compatible with the '-ssl' option for ncat). Also supports an HTTPS shell that sends base-64 encoded input and output via GET and POST requests.
  • smuggler is a tool for sending or receiving files by connecting to a remote host over TCP. There is a cleartext and TLS version (compatible with the '-ssl' option for ncat).
  • dirtysocks is a portable SOCKS proxy that can be dropped onto a server and used for pivoting via SSH port forwarding.
  • shellcode is a simple tool for executing shellcode on Windows or Linux - provide it with a hex string or a path to a binary file containing shellcode. Try using it to execute a meterpreter payload!
  • shellcode-inject is similar to the previous tool, but allows you to inject shellcode into an existing process by providing a PID.
  • xortool is a simple commandline tool for performing multi-byte XOR encryption and decryption of hex strings or binaries.

Building

This project doesn't have any external dependencies besides Go itself. To build it, just do:

$ git clone https://github.com/ofasgard/postex-tools
$ cd postex-tools
$ ./build.sh

If you have trouble building or using any of the tools, the following notes may be helpful:

  • You may need to install gcc-multilib or the equivalent for cross-platform compilation to work.
  • In order to use the shellcode loader, you'll need to set the GOARCH variable to the correct architecture - 386 for 32-bit shellcode, and amd64 for 64-bit shellcode.

About

A set of libraries and accompanying tools for post-exploitation, written in Golang.

Topics

reverse-shell cross-platform cgo post-exploitation socks5-proxy exfiltration shellcode-loader

Resources

Readme

License

GPL-3.0 license
Activity

Stars

10 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages