README.md 528 B
InsideMan is an internal Windows phishing executable that utilizes Powershell Get-Credential calls in an attempt to coerce the user into typing thier plaintext password into the prompt. The plaintext password is then written to a file named windows32.txt located in the user's Documents directory.
USAGE:
Use gcc to compile the cpp file. gcc.exe insideman.cpp -o insideman.exe
Attach to a dropper file with iExpress or upload to target.
Use beacon to cat out C:\Users\$user\Documents\windows32.txt for plaintext password.