Code Monkey home page Code Monkey logo

Comments (11)

forktopot avatar forktopot commented on June 30, 2024

应该是src/main/java/net/rebeyond/behinder/resource/tools 这个路径下的jar包的问题,冰蝎会先根据系统信息去上传对应的jar包然后加载jar包注入内存马然后删除

from behinderclientsource.

MountCloud avatar MountCloud commented on June 30, 2024

应该是src/main/java/net/rebeyond/behinder/resource/tools 这个路径下的jar包的问题,冰蝎会先根据系统信息去上传对应的jar包然后加载jar包注入内存马然后删除

多谢反馈,这个issue会在问题修复后关闭。

from behinderclientsource.

Hvnt3r avatar Hvnt3r commented on June 30, 2024

如果不需要修改对应tools.jar的话,可以将对应文件夹从java目录下移到资源文件夹,可以解决这个问题

from behinderclientsource.

forktopot avatar forktopot commented on June 30, 2024

如果不需要修改对应tools.jar的话,可以将对应文件夹从java目录下移到资源文件夹,可以解决这个问题

大哥,你的意思是将能注入内存马版本的tools 替换掉11版本的tools吗,好像不行哦

from behinderclientsource.

Hvnt3r avatar Hvnt3r commented on June 30, 2024

如果不需要修改对应tools.jar的话,可以将对应文件夹从java目录下移到资源文件夹,可以解决这个问题

大哥,你的意思是将能注入内存马版本的tools 替换掉11版本的tools吗,好像不行哦

我的意思是指用11版本,把tools目录从src目录中copy一份到外面的资源目录下,然后修改加载内存马tools的代码指向新的目录。我怀疑出现这个问题是IDEA的问题,就是当你把src指定为代码目录的时候下面的子目录如果有标记为资源文件的目录的时候会不生效,因此最好把资源跟代码区分开

MainController.java

shellService.uploadFile(libPath, Utils.getResourceData("resource/tools/tools_" + osType + ".jar"), true);
shellService.loadJar(libPath);
shellService.injectMemShell(type, libPath, path, Utils.getKey(shellEntity.getString("password")), isAntiAgent);

from behinderclientsource.

forktopot avatar forktopot commented on June 30, 2024

如果不需要修改对应tools.jar的话,可以将对应文件夹从java目录下移到资源文件夹,可以解决这个问题

大哥,你的意思是将能注入内存马版本的tools 替换掉11版本的tools吗,好像不行哦

我的意思是指用11版本,把tools目录从src目录中copy一份到外面的资源目录下,然后修改加载内存马tools的代码指向新的目录。我怀疑出现这个问题是IDEA的问题,就是当你把src指定为代码目录的时候下面的子目录如果有标记为资源文件的目录的时候会不生效,因此最好把资源跟代码区分开

MainController.java

shellService.uploadFile(libPath, Utils.getResourceData("resource/tools/tools_" + osType + ".jar"), true);
shellService.loadJar(libPath);
shellService.injectMemShell(type, libPath, path, Utils.getKey(shellEntity.getString("password")), isAntiAgent);

不行,我吧资源目录提取出去并修改访问路径依然是不行的,你本地有成功解决这个问题吗?而且同样是将资源目录放在相同路径下的9版本是可以注入成功的,事实上10版本也是注入不成功的,而9版本和10,11版本的区别在于10和11版本多了一个内存马防检测功能

from behinderclientsource.

Hvnt3r avatar Hvnt3r commented on June 30, 2024

如果不需要修改对应tools.jar的话,可以将对应文件夹从java目录下移到资源文件夹,可以解决这个问题

大哥,你的意思是将能注入内存马版本的tools 替换掉11版本的tools吗,好像不行哦

我的意思是指用11版本,把tools目录从src目录中copy一份到外面的资源目录下,然后修改加载内存马tools的代码指向新的目录。我怀疑出现这个问题是IDEA的问题,就是当你把src指定为代码目录的时候下面的子目录如果有标记为资源文件的目录的时候会不生效,因此最好把资源跟代码区分开
MainController.java

shellService.uploadFile(libPath, Utils.getResourceData("resource/tools/tools_" + osType + ".jar"), true);
shellService.loadJar(libPath);
shellService.injectMemShell(type, libPath, path, Utils.getKey(shellEntity.getString("password")), isAntiAgent);

不行,我吧资源目录提取出去并修改访问路径依然是不行的,你本地有成功解决这个问题吗?而且同样是将资源目录放在相同路径下的9版本是可以注入成功的,事实上10版本也是注入不成功的,而9版本和10,11版本的区别在于10和11版本多了一个内存马防检测功能

我本地现在可以正常使用重新编译的11版本的,关键看你编译后的tools_x.jar的大小是否变化了,我这边之前编译后的toolsjar包会变成1.5m大小,原本是900k,变成1.5m的jar包损坏了,也就无法注入,因此想办法不要让idea更改对应jar就可以了

from behinderclientsource.

20200629 avatar 20200629 commented on June 30, 2024

修改pom.xml

  <resources>
      <resource>
        <directory>src/main/resources</directory>
        <filtering>true</filtering>
      </resource>
      <resource>
        <directory>src/main/java</directory>
        <filtering>true</filtering>
      </resource>
    </resources>
    <plugins>
      <plugin>
        <groupId>org.apache.maven.plugins</groupId>
        <artifactId>maven-resources-plugin</artifactId>
        <configuration>
          <encoding>UTF-8</encoding>
          <nonFilteredFileExtensions>
            <nonFilteredFileExtension>xml</nonFilteredFileExtension>
            <nonFilteredFileExtension>fxml</nonFilteredFileExtension>
            <nonFilteredFileExtension>jpg</nonFilteredFileExtension>
            <nonFilteredFileExtension>png</nonFilteredFileExtension>
            <nonFilteredFileExtension>css</nonFilteredFileExtension>
            <nonFilteredFileExtension>dll</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>js</nonFilteredFileExtension>
            <nonFilteredFileExtension>html</nonFilteredFileExtension>
            <nonFilteredFileExtension>gif</nonFilteredFileExtension>
            <nonFilteredFileExtension>asp</nonFilteredFileExtension>
            <nonFilteredFileExtension>php</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>32</nonFilteredFileExtension>
            <nonFilteredFileExtension>64</nonFilteredFileExtension>
            <nonFilteredFileExtension>bak</nonFilteredFileExtension>
          </nonFilteredFileExtensions>
        </configuration>
      </plugin>

mvn clean package -DskipTests

from behinderclientsource.

MountCloud avatar MountCloud commented on June 30, 2024

修改pom.xml

  <resources>
      <resource>
        <directory>src/main/resources</directory>
        <filtering>true</filtering>
      </resource>
      <resource>
        <directory>src/main/java</directory>
        <filtering>true</filtering>
      </resource>
    </resources>
    <plugins>
      <plugin>
        <groupId>org.apache.maven.plugins</groupId>
        <artifactId>maven-resources-plugin</artifactId>
        <configuration>
          <encoding>UTF-8</encoding>
          <nonFilteredFileExtensions>
            <nonFilteredFileExtension>xml</nonFilteredFileExtension>
            <nonFilteredFileExtension>fxml</nonFilteredFileExtension>
            <nonFilteredFileExtension>jpg</nonFilteredFileExtension>
            <nonFilteredFileExtension>png</nonFilteredFileExtension>
            <nonFilteredFileExtension>css</nonFilteredFileExtension>
            <nonFilteredFileExtension>dll</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>js</nonFilteredFileExtension>
            <nonFilteredFileExtension>html</nonFilteredFileExtension>
            <nonFilteredFileExtension>gif</nonFilteredFileExtension>
            <nonFilteredFileExtension>asp</nonFilteredFileExtension>
            <nonFilteredFileExtension>php</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>32</nonFilteredFileExtension>
            <nonFilteredFileExtension>64</nonFilteredFileExtension>
            <nonFilteredFileExtension>bak</nonFilteredFileExtension>
          </nonFilteredFileExtensions>
        </configuration>
      </plugin>

mvn clean package -DskipTests

这样不行吧,你这样配置是把所有必要的文件都给过滤掉了。

from behinderclientsource.

20200629 avatar 20200629 commented on June 30, 2024

修改pom.xml

  <resources>
      <resource>
        <directory>src/main/resources</directory>
        <filtering>true</filtering>
      </resource>
      <resource>
        <directory>src/main/java</directory>
        <filtering>true</filtering>
      </resource>
    </resources>
    <plugins>
      <plugin>
        <groupId>org.apache.maven.plugins</groupId>
        <artifactId>maven-resources-plugin</artifactId>
        <configuration>
          <encoding>UTF-8</encoding>
          <nonFilteredFileExtensions>
            <nonFilteredFileExtension>xml</nonFilteredFileExtension>
            <nonFilteredFileExtension>fxml</nonFilteredFileExtension>
            <nonFilteredFileExtension>jpg</nonFilteredFileExtension>
            <nonFilteredFileExtension>png</nonFilteredFileExtension>
            <nonFilteredFileExtension>css</nonFilteredFileExtension>
            <nonFilteredFileExtension>dll</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>js</nonFilteredFileExtension>
            <nonFilteredFileExtension>html</nonFilteredFileExtension>
            <nonFilteredFileExtension>gif</nonFilteredFileExtension>
            <nonFilteredFileExtension>asp</nonFilteredFileExtension>
            <nonFilteredFileExtension>php</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>32</nonFilteredFileExtension>
            <nonFilteredFileExtension>64</nonFilteredFileExtension>
            <nonFilteredFileExtension>bak</nonFilteredFileExtension>
          </nonFilteredFileExtensions>
        </configuration>
      </plugin>

mvn clean package -DskipTests

这样不行吧,你这样配置是把所有必要的文件都给过滤掉了。

nonFilteredFileExtension是指定不需要重新编码文件类型,并没有过滤文件。

from behinderclientsource.

MountCloud avatar MountCloud commented on June 30, 2024

修改pom.xml

  <resources>
      <resource>
        <directory>src/main/resources</directory>
        <filtering>true</filtering>
      </resource>
      <resource>
        <directory>src/main/java</directory>
        <filtering>true</filtering>
      </resource>
    </resources>
    <plugins>
      <plugin>
        <groupId>org.apache.maven.plugins</groupId>
        <artifactId>maven-resources-plugin</artifactId>
        <configuration>
          <encoding>UTF-8</encoding>
          <nonFilteredFileExtensions>
            <nonFilteredFileExtension>xml</nonFilteredFileExtension>
            <nonFilteredFileExtension>fxml</nonFilteredFileExtension>
            <nonFilteredFileExtension>jpg</nonFilteredFileExtension>
            <nonFilteredFileExtension>png</nonFilteredFileExtension>
            <nonFilteredFileExtension>css</nonFilteredFileExtension>
            <nonFilteredFileExtension>dll</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>js</nonFilteredFileExtension>
            <nonFilteredFileExtension>html</nonFilteredFileExtension>
            <nonFilteredFileExtension>gif</nonFilteredFileExtension>
            <nonFilteredFileExtension>asp</nonFilteredFileExtension>
            <nonFilteredFileExtension>php</nonFilteredFileExtension>
            <nonFilteredFileExtension>jar</nonFilteredFileExtension>
            <nonFilteredFileExtension>32</nonFilteredFileExtension>
            <nonFilteredFileExtension>64</nonFilteredFileExtension>
            <nonFilteredFileExtension>bak</nonFilteredFileExtension>
          </nonFilteredFileExtensions>
        </configuration>
      </plugin>

mvn clean package -DskipTests

这样不行吧,你这样配置是把所有必要的文件都给过滤掉了。

nonFilteredFileExtension是指定不需要重新编码文件类型,并没有过滤文件。

ok 多谢提供

from behinderclientsource.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.