UNICORN

Based on Matthew Graeber’s powershell attacks and the powershell bypass technique presented by our own David Kennedy and Josh Kelly at Defcon 18.

Usage is simple. Ensure Metasploit is installed and in the right path. Run Magic Unicorn.

This will generate a powershell command. Simply paste this to a command line window or through a payload delivery system.

Download How to Get UNICORN
Option 1
To download UNICORN, type the following command in Linux:
Copied
Options 2
View on Git
help How to Get Help with UNICORN

For bug reports or enhancements, please open an issue on this projects github page.

TrustedSec Security Blog OneNote Malware Analysis

New Attacks, Old Tricks: How OneNote Malware is Evolving

1    Analysis of OneNote Malware A lot of information has been circulating regarding the distribution of malware through OneNote, so I thought it would be fun to look at a sample. It turns out there are a lot of similarities between embedding malicious code into a OneNote document and the old macro/VBA techniques for Office...
Read More