Keres a is Powershell rev-shell backdoor with persistence
it generates a PE exe that spawns a powershell process that starts a powershell rev-shell with persistence (if process stops an other one is spawned , if process is running don t spawn new process)
also it makes a batch and vbs file for persistent startup using reg.exe
you can add -Ps (optional) to generate only a .ps1 file
(compilation with nuitka wich is a bit slow, Pyinstaller not working in linux 🙁 forsome reason)
What do you think?
It is nice to know your opinion. Leave a comment.