Beacon
Last updated
Last updated
Beacon currently only supports Windows OS. The Beacon can be generated for x64 and x86 architectures in the following formats: EXE, DLL, Service Executable, Shellcode. The Service name is set for the Service Executable.
Beacon currently supports the following commands.
Commands marked with * have subcommands.
cat
Read first 2048 bytes of the specified file
cd
Change current working directory
cp
Copy file
disks
Lists mounted drives on current system
ls
Lists files in a folder
mv
Move file
mkdir
Make a directory
pwd
Print current working directory
rm
Remove a file or folder
download
Download a file
upload
Upload a file
profile download.chunksize
Change the exfiltrate data size for download request (default 128000)
exfil cancel
Cancels a download
exfil start
Resumes a download that's has been stoped
exfil stop
Stops a download that's in-progress
socks start
Start a SOCKS4/5 proxy server (with/out auth) and listen on a specified port
socks stop
Stop a SOCKS proxy server
lportfwd start
Start local port forwarding from server via agent
lportfwd stop
Stop local port forwarding
rportfwd start
Start remote port forwarding from agent via server
rportfwd stop
Stop remote port forwarding
ps list
Show process list
ps kill
Kill a process with a given PID
ps run
Run a program
link smb
Connect to an SMB agent and re-establish control of it
unlink
Disconnect from an pivot agent
jobs list
List of jobs
jobs kill
Kill a specified job
execute bof
Execute Beacon Object File
getuid
Prints the User ID associated with the current token
rev2self
Revert to your original access token
sleep
Sets sleep time
terminate thread
Terminate the main beacon thread (without terminating the process)
terminate process
Terminate the beacon process
