RedGhost: Linux post-exploitation framework
Linux post-exploitation framework designed to assist red teams in persistence, reconnaissance, privilege escalation and leaving no trace.
Function to generate various encoded reverse shells in netcat, bash, python, php, ruby, perl
Function to inject sudo command with wrapper function to run a reverse root shell every time “sudo” is run for privilege escalation
Function to inject the “ls” command with a wrapper function to run payload every time “ls” is run for persistence
Function to log keystrokes of a ssh process using strace
Function to create a cron job that downloads a payload from a remote server and runs payload every minute for persistence
Function to create systemd timer that downloads and executes payload every 30 seconds for persistence.
Function to try various methods to escalate privileges
Function to clear logs and make an investigation with forensics difficult
Function to grab mass reconnaissance/information on a system
Function to check if the system is a virtual machine
Function to execute remote bash script in memory
Function to BanIp using iptables
apt-get install dialog gcc iptables strace
wget https://raw.githubusercontent.com/d4rk007/RedGhost/master/redghost.sh; chmod +x redghost.sh; ./redghost.sh