Бэкдор через макрос в exel. Exel macros [payload generate]

https://github.com/Veil-Framework

https://github.com/khr0x40sh/MacroShop/blob/master/macro_safe.py

Veil-Evasion

Veil-Evasion is a tool used to generate payloads that bypass antivirus solutions

Veil-Pillage
Veil-Pillage is a post-exploitation framework that integrates with Veil-Evasion.

Veil-Catapult
Veil-Catapult is a payload delivery tool that integrates with Veil-Evasion.

Veil-Ordnance
Veil-Ordnance is a tool designed to quickly generate MSF stager shellcode

Veil
Veil is the superproject containing all tools in the Veil-Framework

Тестирую:
https://www.virustotal.com/ru/file/ec009192dfbb38dea3b2aafec5045ace2b20260733705eb0bb0651ed454a6375/analysis/1450904187/

Установка и генерация шеллкода:

Fireeye malware rec "clip" [NX, EX, FX] запись действий малвари

Запись действий (видео) вредоносного файла внутри виртуальной машины гипервизора MVX (Fireeye)

NX#_debug show avc config

NX#_debug avc config vnc_rec enable

Attack Validator Controller Daemon
        Name                                          : avc
        NA Heart-Beat timeout (ms)                    : 30000
        VM Ping Retry Delay (ms)                      : 5000
        VM Ping Retry Max                             : 20

XEE / Joomlavs [joomla vurn scan] / Android bugs frw / PHPSploit

YaVol - GUI for Volatility Framework and Yara

GUI for Volatility Framework and Yara

1. InstallationClone repo

git clone https://Ft44k@bitbucket.org/Ft44k/yavol.git

default forder for yara sigs is /yara_rules

2. Prerequisitesyou need to have installed Python (2.7), PyQt4, and sqlite3