I have seen crazy things being said online about this project. People talking about it without having any clue about what Shellter really is (doing).
The funniest thing about it, is when people actually blame the tool itself while they totally use it in the wrong way; feeding to the tool whatever might come to their head. NO KIDDING!
What Shellter is NOT:
i) packer
ii) crypter
iii) executable obfuscator
iv) whatever you think it is
A lot of people have been asking me to support domain names directly from Shellter in the LHOST parameter.
This is something that I am planning to implement in the upcoming version (v5.2) of Shellter. If you need this right now, then you can generate the payload in raw format from metasploit and feed it to Shellter.
However, this is also a good opportunity to make some things clear about setting domain names as LHOST parameter at the various payloads that support reverse connection back to the attacker’s server.
While some people might be aware of what actually happens in the background during the payload generation in metasploit regarding this matter, it also came to my attention that not everyone is.
Continue reading Using domain names as LHOST
It’s been two years already since I started developping Shellter, but a few days ago this project reached one year of public release.
A lot has changed in Shellter since that entertaining evening in DC4420 where I had the honor of presenting this project to the public, and make it available to download.
Thanks to the motivation I was receiving from friends, colleagues and other people that I never had the chance to meet in person, I kept spending big amounts of my time in order to make Shellter more powerful and user-friendly. I want to believe that it went quite well.
Today, Shellter v3.1 has been released, and I am already planning for the next major upgrades that will introduce some more exotic features in Shellter. I won’t let you down. You bet!
Thank you guys,
kyREcon