All posts by kyREcon

Blog News

Shellter Updates in Kali Linux

Howdy,

Are you aware of that issue where the “apt-get install shellter” would just fetch an outdated version of Shellter?

Well, I guess that doesn’t matter anymore. :0P

This issue has now been solved for Kali users and there will be an automated check daily for the latest release of Shellter. So next time, you won’t get version 4.0 or whatever… ;0)

If you are an admin of another Linux Distro related to penetration testing, and you haven’t automated this yet, then please get in contact.

Last but not least, I woud like to thank @raphaelhertzog for his assistance in automating this process for Kali users, which made life a bit easier for everyone.

Enjoy,
kyREcon

Articles

An important tip for Shellter usage

Hi all,

I have been watching this ‘bad habit’ that I am  going to discuss about, happening very often so it’s time to talk about it.

I have noticed that people tend to use Shellter with the same executables, even when this is not required as I explain later on.

Someone uploads a demo video infecting ‘putty.exe’,  then everyone uses that.
Next day someone uploads a video infecting the setup program of ‘Winrar’ and then everyone uses that.
It’s one thing using the same executables for creating videos for educational and demonstration purposes and another using those all the time on VirusTotal and other online multi-AV scanners.

I hate to ruin this for you, but by always using the same executables with Shellter,  AV vendors create better heuristics for those specific legitimate executables that you infect.

This is not really effective against Shellter itself but in some cases might fit the purpose, and make things worse for yourself when you really need to convince someone to execute a specific ‘legitimate’ application that you have infected.

Continue reading An important tip for Shellter usage