# Dropbox ``` >git clone https://github.com/Arno0x/DBC2 dbc2 >cd dbc2 >pip install -r requirements.txt >chmod +x dropboxC2.py https://www.dropbox.com/developers/apps/create 创建好后要生成个accesstoken,填入config.py中 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/269.png) ``` 执行 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/270.png) ``` 这里需设置一个与受控机交互的加密密码 发布agent >publishStage dbc2_agent.exe 使用命令listPublishedStage可以看到已发布的agent ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/271.png) ``` 生成payload >genStager [tab]查看可生成的格式 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/272.png) ``` >genStager oneliner default生成powershell格式payload ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/273.png) ``` >genStager batch default生成bat格式 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/274.png) ``` Msbuild,其余不做演示 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/275.png) ``` 这里使用powershell格式的,在受控机运行 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/276.png) ``` 攻击机可以看到上线 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/277.png) ``` >list命令可以看到已控机器 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/278.png) ``` 使用use命令与受控机器交互 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/279.png) ``` 输入?获得后续命令 ``` ![image](https://raw.githubusercontent.com/xiaoy-sec/Pentest_Note/master/img/280.png) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://www.heresecurity.wiki/nei-wang-he-yu/ming-ling-yu-kong-zhi/dropbox.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.