/GreatSCT

The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool is intended for BOTH red and blue team.

Primary LanguagePythonGNU General Public License v3.0GPL-3.0

GreatSCT

An Application Whitelisting Bypass Tool

python3 gr8sct.py

The first screen you'll see is this menu.

Select the payload you wish to generate by name or its number, help for help, and menu at any time to get back here.

For single payload generation you will find the follwing with with values pointing to your C&C to fill out.

These can be set using set variable value syntax

Or by entering variable name/# itself, which gives more hints about the expected value

help gives more info as well

Once the correct values have been set generate to build your payload.

The payload (shellcode.xml in this case) appears in the root directory.
The devs should fix this so you can specify an output folder, but they are lazy.

For network testing purposes use generateAll from the inital menu

The bottom values are those which are common to multiple payloads. This lets you easily set your C&C values for all the payloads.

When it's all set generate and you'll find your payloads in ./GenerateAll/

Apache and metasploit will automatically start when the GenerateAll function finishes.

A script to automatically execute each payload is located in ./GenerateAll/gr8sct.bat.

Download generateall.zip from the HostedDomain, execute gr8sct.bat, and open ./GenerateAll/analyst.csv when the batch script finishes to see which bypasses worked.