Skip to content

edxsh/MyWarez

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
Examples
Examples
 
 
MyWarez
MyWarez
 
 
.DS_Store
.DS_Store
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
MyWarez.sln
MyWarez.sln
 
 
README.md
README.md
 
 

Repository files navigation


MyWarez

Malware Kill Chain build framework


Report Bug · Request Feature

Table of Contents
  1. About The Project
  2. Getting Started
  3. Usage
  4. Roadmap
  5. Contributing
  6. License
  7. Contact

About The Project

MyWarez is a malware kill chain build framework that can be used to automate the build process of endpoint attack scenerios. With this framework, you can construct and modify scenerios such as the one below in an automated fashion. No more spending hours manaully compiling code to make a modifcation to 10 level deep compiled resource!

  1. Hosts an Edge exploit on an HTTP Server (HTMLMTH)
  2. Applies HTML, HTTP, TCP, IP evasions to the exploit response traffic.
  3. Exploits the browser to execute a command line payload such as PowerShell.
  4. Reflectively loads a next stage DLL containing an LPE
  5. Exploits an LPE to take control over \windows\license.rtf
  6. Overwrites \windows\license.rtf with a next stage DLL payload
  7. Uses the Diaghub technique to load the DLL, license.rtf, to escalate privilege
  8. Establishes persistence using the AppCertDLLs technique
  9. Invokes Anti-Debugger techniques and only executes the next stage when the next stage DLL is loaded by winlogon.exe
  10. Launches a Reverse HTTPS meterpreter shell over TCP:636

Getting Started

To get a local copy up and running follow these simple steps.

Prerequisites

  • C#.NET programming experience
  • Visual Studio
  • .NET Core 3.1
  • Visual C++ build tools
  • Python3
  • PyInstaller
  • GO
  • TDM-GCC
  • Metasploit-Framework
  • Windows Sub Linux

Installation

  1. Install dependencies and ensure the following are in the System Path 
    go
python
pyinstaller
msfvenom
bash
  2. Clone the repo recursively 
    git clone https://github.com/ZwCreatePhoton/MyWarez.git --recursive
  3. Open MyWarez.sln in Visual Studio
  4. Clean Solution, Build Solution, Run the Examples project.

Usage

For code examples on the framework's usage, please refer to the Examples project.

Read through the commented examples in the following order:

  1. OutputMechanism
  2. NativeCode
  3. Office
  4. Misc

Roadmap

See the open issues for a list of proposed features (and known issues).

Contributing

Contributions are what make the open source community such an amazing place to be learn, inspire, and create. Any contributions you make are greatly appreciated.

  1. Fork the Project
  2. Create your Feature Branch (git checkout -b feature/AmazingFeature)
  3. Commit your Changes (git commit -m 'Add some AmazingFeature')
  4. Push to the Branch (git push origin feature/AmazingFeature)
  5. Open a Pull Request

License

Distributed under the MIT License. See LICENSE for more information.

Contact

ZwCreatePhoton - @ZwCreatePhoton

Project Link: https://github.com/ZwCreatePhoton/mywarez

About

Malware Kill Chain build framework

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages