Skip to content

ppid, blockdlls, and bugfixes
Compare
Choose a tag to compare
@djhohnstein djhohnstein released this 25 Aug 03:46
· 762 commits to master since this release
1.2.0
92958fc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This release introduces two new commands that modify post-exploitation jobs that require sacrificial processes. Now, we can spoof the parent process of these jobs, as well as block any non-Microsoft signed dlls from loading into those processes. Last but not least is a bug fix that's been a long time in the making. Now, if you sleep an agent to 0 seconds, you will receive output from that post-ex job.

Assets 2
Loading