Jul 24, 2020 by Alexandre Croix | 2929 views
A tedious step for all red-teamers is set up a system to upload payloads on the victim's machine. Kuba Gretzky, the author of Evilginx, released a nice tool to simplify this task.
Pwndrop is a self-deployable file hosting service allowing to easily upload and download payloads over HTTP and WebDAV.
In practice, you have to deploy the tool on a small server or a VPS, register a domain name for your server, and... that's it. You are ready to upload your payloads.
Set up Pwndrop is very easy. Only a few steps are required: you have to deploy a server (the smallest VPS on DigitalOcean is perfect), install Pwndrop on it and register a domain name.
We are now ready to install Pwndrop on the server. The installation is straightforward. On your server, run the following commands:
tar zxvf pwndrop-linux-amd64.tar.gz
There is only one more step for the configuration: add the IP address of your server in the pwndrop.ini file.
The file content should looks like:
data_dir = /usr/local/pwndrop/data
admin_dir = /usr/local/pwndrop/admin
listen_ip = 220.127.116.11
http_port = 80
https_port = 443
Pwndrop is a plug and play tool. No complex configuration is required. You can access the tool with the URL: https://cylab.ga/pwndrop. You have to create an account on this page.
Below all these fields, there is a place to upload a facade file. The facade file will be downloaded instead of the real payload file if the facade mode is enabled. It is also possible to specify a MIME-type for the facade file.
The facade file is facade.pdf and its MIME-type is pdf. That means Firefox or Chrome will automatically open the file when the user will click on the link https://cylab.ga/files/facade.pdf if the facade mode is enabled.
If the facade mode is disabled, the URL will be redirected to https://cylab.ga/files/facade.pdf.exe that is an exe file. The browser will execute the executable file when the user will click on the link.
The tool has some very nice features:
Like the great Evilginx, Pwndrop is a very cool tool. It is easy to use, no complex configuration and can be very useful! Kuba Gretzky will continue to upgrade his tool with some other features like password protection, a download file counter or a download tracker!
This blog post is licensed under CC BY-SA 4.0