Differences

This shows you the differences between two versions of the page.

--- create_a_phishing_campaign_with_a_java_dropper_applet [2017/03/04 16:31] – [Configuration] lucy
+++ create_a_phishing_campaign_with_a_java_dropper_applet [2019/07/25 12:49] (current) – external edit 127.0.0.1
@@ Line 24: / Line 24: @@
 ===== Configuration =====
-In order to use the Java Applet Dropper or Exploiter you should pick a [[scenario_types|file based or mixed scenario type]] (if you choose a mixed scenario the applet will only be placed automatically on the second page like account.html; it won't work in a mixed scenario with just one webpage). This allows you to download and run any code that is compiled on LUCY using the Java Dropper. Please use the [[create_a_phishing_campaign_with_malware_simulations|file based attack tutorial to create your campaign]]. If you get to the scenario settings page please choose as a compression type "Java Applet":
+  * **Step 1 - choose a file based template or a mixed template**: In order to use the Java Applet Dropper or Exploiter you should pick a [[scenario_types|file based or mixed scenario type]] (if you choose a mixed scenario the applet will only be placed automatically on the second page like account.html; it won't work in a mixed scenario with just one webpage). This allows you to download and run any code that is compiled on LUCY using the Java Dropper. Please use the [[create_a_phishing_campaign_with_malware_simulations|file based attack tutorial to create your campaign]].
+  * **Step 2 -Select the appropriate file type** within the scenario settings. "Tunnel Executable" is the java dropper and "java applet" is the applet that gathers system information:
+{{ s1_choose_filetype.png?600 }}
+  * **Step 3 - Fine-tune the settings**: If you get to the scenario settings page please choose as a compression type "Java Applet":
 {{ javattack.png?600 }}
@@ Line 32: / Line 40: @@
 {{ javapath.png?600 }}
-In case you selected the java dropper, you still need to select the malware simulation that should be loaded & executed with the Applet on landing page template. This is all it needs to configure a Applet based attack. If the user opens the link to the landing page he now will get a popup that will ask him to run the applet. If he accepts to run the applet, the selected malware simulation is loaded into the specified directory and executed.
+In case you selected the java dropper, you still need to select the malware simulation that should be loaded & executed when the applet on landing page template is activated.
+  * **Step 4 - Test your scenario:**: If everything is configured correctly, the user who opens the link to the landing page should now see a popup that will ask him to run an applet. If he accepts to run the applet, the selected malware simulation is loaded into the specified directory and executed OR the system commands are getting executed (depening on which applet you picked in Step 2):
 {{ javattackeditpage.png?600 }}
@@ Line 41: / Line 51: @@
   * The applet requires the browser to have the java plugin installed and activated
   * Only executables can be transmitted from LUCY to the client (no word files)
+  * The applet can only run on file based & mixed template types (if mixed: it will only run on the second page like account.html)