RedGhost – Linux submit exploitation framework


Linux submit exploitation framework designed to help pink groups in persistence, reconnaissance, privilege escalation and leaving no hint.

Perform to generate varied encoded reverse shells in netcat, bash, python, php, ruby, perl

Perform to inject sudo command with wrapper operate to run a reverse root shell everytime “sudo” is run for privilege escalataion

Perform to inject the “ls” command with a wrapper operate to run payload everytime “ls” is run for persistence

Perform to log keystrokes of a ssh course of utilizing strace

Perform to create cron job that downloads payload from distant server and runs payload each minute for persistence

Perform to create systemd timer that downloads and executes payload each 30 seconds for persistence.

Perform to attempt varied strategies to escalate privileges

Perform to clear logs and make investigation with forensics troublesome

Perform to seize mass reconaissance/info on system

Perform to verify if the system is a digital machine

Perform to execute distant bash script in reminiscence

Perform to BanIp utilizing iptables

Installation

one liner to install RedGhost:

wget https://raw.githubusercontent.com/d4rk007/RedGhost/master/redghost.sh; chmod +x redghost.sh; ./redghost.sh

One liner to install prerequisites and RedGhost:

wget https://raw.githubusercontent.com/d4rk007/RedGhost/master/redghost.sh; chmod +x redghost.sh; apt-get install dialog; apt-get install gcc; apt-get install iptables; apt-get install strace; ./redghost.sh

Dependencies

dialog, gcc, iptables, strace




Source link