Emulates a Cisco ASA Anyconnect VPN service, accepting any credentials (and logging them) before serving VBS to the client that gets executed in the context of the user.
- Copy the files to a server.
- Make sure you have python2 (I know, but it works on appliances ;)) and pip installed, along with pyOpenSSL
- sudo apt-get update
- sudo apt install python2
- sudo apt install python-pip
- sudo pip2 install pyOpenSSL
- Generate a certificate for the domain you're hosting it on.
- Make sure that the private key and cert are in the same pemfile.pem in the working directory of the tool. For letsencrypt certs, this is just a case of catting privkey.pem and fullchain.pem into pemfile.pem.
- Edit the 'OnDisconnect.vbs' and 'OnConnect.vbs' files in the 'files' directory to contain your payload. No need to edit the file name, it gets served as the required VBS file that anyconnect looks for.
- Start the server: sudo python2 server.py