Messages

16

Python Scripting / Re: Get alternates

« on: September 19, 2013, 11:30:05 AM »

j'ai une commande avec un payload qui execute un script python, je veux recuperer les payloads qui ont executer le script.
I have a command with a payload that executes a python script, I want to retrieve the payloads that execute the script.

Payloads = {1: 'test', 2: 'teste', 3: 'other'}

Command "hello {1}":
-Phrase "hello"
-Payloads

in LCB : PY.ExecFile(test.py)

if i say "hello test" i want get 1: 'test', 2: 'teste' in test.py but not 3: 'other'

17

Feature Requests / "Must confirm if alternates" option

« on: September 19, 2013, 11:17:13 AM »

Is it be possible to add options that only asks for confirmation if there have any alternatives?

18

Python Scripting / Get alternates

« on: September 19, 2013, 11:08:59 AM »

hi , Is it be possible to get alternatives (key and value) who run script ?

19

Python Scripting / Re: how to save a payload ?

« on: September 19, 2013, 10:45:15 AM »

yeah, you're the best
as indicated here : http://ironpython.codeplex.com/workitem/22829, i've just added bytes(path) on your first link and it's works.

Code: [Select]

from ctypes import *
from ctypes.wintypes import HWND , HANDLE,DWORD ,LPCWSTR ,MAX_PATH , create_unicode_buffer as _cub
_SHGetFolderPath = windll.shell32.SHGetFolderPathW
from System.Collections.Generic import Dictionary,List
import fnmatch
import os

def get(intFolder):
    _SHGetFolderPath.argtypes = [HWND, c_int, HANDLE, DWORD, LPCWSTR]
    auPathBuffer = _cub(MAX_PATH)
    exit_code=_SHGetFolderPath(0, intFolder, 0, 0, auPathBuffer)
    return auPathBuffer.value

userProgramsPath = get(2)
programsPath = get(23)

MAX_PATH = 260
HICON = c_int

class SHFILEINFO(Structure):
    _fields_ = [("hIcon", HICON),
                ("iIcon", c_int),
                ("dwAttributes", c_uint),
                ("szDisplayName", c_char * MAX_PATH),
                ("szTypeName", c_char * 80)]


SHGFI_DISPLAYNAME       = 0x000000200

shfileinfo = SHFILEINFO()

flags = SHGFI_DISPLAYNAME

dictUserPrograms = {}
for root, dirnames, filenames in os.walk(userProgramsPath):
  for filename in fnmatch.filter(filenames, '*.lnk'):
    windll.shell32.SHGetFileInfo(bytes(os.path.join(root, filename)) , 0, byref(shfileinfo), sizeof(shfileinfo), flags)
    dictUserPrograms[os.path.join(root, filename)] = shfileinfo.szDisplayName

dictPrograms = {}
for root, dirnames, filenames in os.walk(programsPath):
  for filename in fnmatch.filter(filenames, '*.lnk'):
    windll.shell32.SHGetFileInfo(bytes(os.path.join(root, filename)) , 0, byref(shfileinfo), sizeof(shfileinfo), flags)
    dictPrograms[os.path.join(root, filename)] = shfileinfo.szDisplayName
    
dictPrograms.update(dictUserPrograms)
dictPayload = Dictionary[str,str](dictPrograms)


if not os.path.isdir('Userpayloads') :
os.makedirs('Userpayloads')
vc.savePayloadFile("Userpayloads\startmenu.xml", dictPayload, 1)

Code: [Select]

<value>C:\Users\GMib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk</value>
        <phrase>Loupe</phrase>
Thank you

20

Python Scripting / Re: how to save a payload ?

« on: September 18, 2013, 03:20:52 PM »

One extra note:

Be careful using subset matching with this payloadXml.  Unless you are going to edit the phrases and turn subset matching off, then I recommend that any commands using this payload should have the "confirmation required" option set to true.

i've miss this post

je compte sur l'option "don't execute if alternates" quand il sera possible de l'activer pour une seule commande
I look on the "do not execute if alternates" option when it will be possible to activate for single command

21

Python Scripting / Re: how to save a payload ?

« on: September 18, 2013, 03:12:59 PM »

Here is the final script :

Code: [Select]

import ctypes as _ctypes
from ctypes.wintypes import HWND as _HWND, HANDLE as _HANDLE,DWORD as _DWORD,LPCWSTR as _LPCWSTR,MAX_PATH as _MAX_PATH, create_unicode_buffer as _cub
_SHGetFolderPath = _ctypes.windll.shell32.SHGetFolderPathW
from System.Collections.Generic import Dictionary,List
import fnmatch
import os

def get(intFolder):
    _SHGetFolderPath.argtypes = [_HWND, _ctypes.c_int, _HANDLE, _DWORD, _LPCWSTR]
    auPathBuffer = _cub(_MAX_PATH)
    exit_code=_SHGetFolderPath(0, intFolder, 0, 0, auPathBuffer)
    return auPathBuffer.value

userProgramsPath = get(2)
programsPath = get(23)

dictUserPrograms = {}
for root, dirnames, filenames in os.walk(userProgramsPath):
  for filename in fnmatch.filter(filenames, '*.lnk'):
    dictUserPrograms[os.path.join(root, filename)] = filename.replace(".lnk","")

dictPrograms = {}
for root, dirnames, filenames in os.walk(programsPath):
  for filename in fnmatch.filter(filenames, '*.lnk'):
    dictPrograms[os.path.join(root, filename)] = filename.replace(".lnk","")
   
dictPrograms.update(dictUserPrograms)
dictPayload = Dictionary[str,str](dictPrograms)


if not os.path.isdir('Userpayloads') :
os.makedirs('Userpayloads')
vc.savePayloadFile("Userpayloads\startmenu.xml", dictPayload, 1)

I have a problem with windows shortcuts that all appear in English ;(

Code: [Select]

<value>C:\Users\GMib\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk</value>
in french windows the shortcut is Loupe.lnk but i don't know how to get the french version of folder and file.
If someone have idea ?

22

Python Scripting / Re: how to save a payload ?

« on: September 18, 2013, 01:56:30 PM »

yeah it works;) C # is too complicated for me. That is why the examples are useful;)
thank you alot

23

Python Scripting / how to save a payload ?

« on: September 18, 2013, 10:40:28 AM »

hi, I can not save a payload, it would be possible to have an example?

Code: [Select]

import ctypes as _ctypes
from ctypes.wintypes import HWND as _HWND, HANDLE as _HANDLE,DWORD as _DWORD,LPCWSTR as _LPCWSTR,MAX_PATH as _MAX_PATH, create_unicode_buffer as _cub
_SHGetFolderPath = _ctypes.windll.shell32.SHGetFolderPathW

def get(intFolder):
    _SHGetFolderPath.argtypes = [_HWND, _ctypes.c_int, _HANDLE, _DWORD, _LPCWSTR]
    auPathBuffer = _cub(_MAX_PATH)
    exit_code=_SHGetFolderPath(0, intFolder, 0, 0, auPathBuffer)
    return auPathBuffer.value

#print get(23)
#print get(2)

userProgramsPath = get(2)
programsPath = get(23)

import fnmatch
import os

dictUserPrograms = {}
for root, dirnames, filenames in os.walk(userProgramsPath):
  for filename in fnmatch.filter(filenames, '*.lnk'):
      dictUserPrograms[os.path.join(root, filename)] = filename.replace(".lnk","")

#print dictUserPrograms
vc.savePayloadFile("payloads", dictUserPrograms, 1)

an example for each method would be welcome. (I did not understand how to use or what is the method getObject)

24

VoxCommando Basics and Core Features / Re: Playload question

« on: September 18, 2013, 09:36:39 AM »

I will look into adding a better way to update grammars and let you know if it is possible in an upcoming version.  If you don't hear anything about it in the next month, feel free to remind me!

+1, need this too

25

Bug Reports / some translation errors

« on: September 17, 2013, 05:09:33 PM »

hi,

Here are the errors I noted :

English :

Options - General
- Show OSD when cofirmation required -> Show OSD when confirmation required

French :

Main menu - Fichier

- Construire des grammaires manquants -> Construire les grammaires manquants

Main menu - Options

- Afficher le superposition -> Afficher la superposition
- Commencer avec Windows -> Démarrer avec Windows

Options - Général

- Affiche des commandes alternatives -> Affiche les commandes alternatives




For untranslated sentences is there a text file to translate ?

26

Bug Reports / Main menu hidden when windows font set to 140%

« on: September 16, 2013, 11:27:12 AM »

Hi, the main menu "Help" is hidden in english, main menu "plugins", "GenXML" and "Help" is hidden in french when i set windows font to 140%.