public/mando.me
1
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity
6 Commits 1 Branch 0 Tags
00f8bc37bf1ce5cd4622bed4551421959232ec66
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
z0noxz 00f8bc37bf Ported to python3 
It runs, but some further testing in different environments is needed
2017-04-19 19:13:31 +02:00
mando.me.py
Ported to python3
2017-04-19 19:13:31 +02:00
README.md
Update README.md
2017-01-14 14:06:35 +01:00

README.md

mando.me

This tool is under development, but feel free to use it and improve it as you like. contribution is appreciated...

Since smplshllctrlr a lot has happened:

  • Automated exploit-injection via POST or GET (eg. ./mando.me.py --cookie "security=low;PHPSESSID=DEADBEEFDEADBEEFDEADBEEFDEADBEEF" --url "http://metasploitable:2280/dvwa/vulnerabilities/exec/" --post "{'submit':'','ip':_INJECT_}")
  • Encrypted agent communication
  • Meterpreter/Reverse Shell Injection
  • A more user friendly UI
  • Built in post exlpoitation tools (enumeration, privilege escalation etc.)
  • And much more...

DISCLAIMER:

You shall not misuse this tool to gain unauthorized access. This tool should only be used to expand knowledge, and not for causing malicious or damaging attacks. Performing any attacks without written permission from the owner of the system is illegal.

Reference in New Issue View Git Blame Copy Permalink
Description
Web Command Injection Tool
Readme 54 KiB
Languages
Python 100%