Amnesiac

Description

This module automatically starts Amnesiac C2 in a seperate process on the attacking system. PsMapExec will then execute the appropriate payload on specified remote systems in order to establish a persistent connection back to the Amnesiac console window.

Once a session has been established on the required remote systems, it is highly recommended to consult the Amnesiac documentation to aid in post-exploitation.

Github: https://github.com/Leo4j/Amnesiac

Documentation: https://leo4j.gitbook.io/amnesiac/get-started/quick-start

Supported Methods

MSSQL (Requires Fix)
SMB
SessionHunter (WMI)
WMI
WinRM

Optional Parameters

Parameter	Value	Description
-Scramble	N/A	Scrambles the pipe name to a alternate value
-SuccessOnly	N/A	Display only successful results

Parameter

Value

Description

-Scramble

N/A

Scrambles the pipe name to a alternate value

-SuccessOnly

N/A

Display only successful results

Usage

# Standard execution
PsMapExec -targets [All] -Method [Method] -Module Amnesiac

Last updated 4 months ago