Share
## https://sploitus.com/exploit?id=F9513AE9-7BCE-5C49-8B17-5A09F91845EA
MSI-Explot-k4 

> **Next-Gen Red Team Framework for MSI-Based Privilege Escalation**  

 Author: Nin Kanong (k4n0ng) 


> [![GitHub](https://img.shields.io/github/license/Nin-Kanong/MSI-Exploit-k4)](LICENSE)  
> [![Python 3.8+](https://img.shields.io/badge/python-3.8+-blue.svg)](https://www.python.org/)  
> [![Kali Linux](https://img.shields.io/badge/Kali-Linux-green)](https://www.kali.org/)

![Banner](https://via.placeholder.com/1200x300?text=MSI-Exploit-k4+v4.0+β€”+Bypass+Defender+RTP)

## πŸš€ Overview

**MSI-Exploit-k4** is a modular, enterprise-grade framework designed to exploit the **β€œAlways Install with Elevated Privileges”** Windows misconfiguration β€” allowing attackers to gain **SYSTEM-level access** via malicious `.msi` files β€” even when targeting **non-admin users**.

Built with **Python 3**, it supports **dual payload engines**, **AV evasion**, **multiple delivery methods**, and **auto-installation of dependencies** β€” making it ideal for **red team operations**, **penetration testing**, and **CTF challenges**.

---





## 🌟 Features

βœ… **Auto-installs Metasploit** if missing (Ubuntu/Kali compatible)  
βœ… **Dual Payload Engines**:  
  ‒ `msfvenom` (shell_reverse_tcp)  
  ‒ `WiX + PowerShell` (AMSI-bypassing, Base64 obfuscated)  
βœ… **Multiple Listeners**: Netcat, Socat, Python TCP  
βœ… **AV Evasion**: `shikata_ga_nai`, Base64 obfuscation, AMSI bypass  
βœ… **Flexible Delivery**: HTTP, HTTPS, SMB (coming soon)  
βœ… **Victim Validation**: Auto-checks SMB connectivity & policy status  
βœ… **Modular Architecture**: Easy to extend with new payloads or listeners  
βœ… **Docker Support**: Run in containerized environments  
βœ… **Professional Logging**: Session logs, error tracking, timestamps  
βœ… **Cross-Platform Friendly**: Works on Kali, Ubuntu, WSL2

---


## Structure
````
MSI-Exploit-k4/
β”œβ”€β”€ msi_exploit.py          # Main entry point
β”œβ”€β”€ core/
β”‚   β”œβ”€β”€ __init__.py
β”‚   β”œβ”€β”€ installer.py        # Payload generation
β”‚   β”œβ”€β”€ listener.py         # Netcat, Socat, Python TCP
β”‚   β”œβ”€β”€ delivery.py         # HTTP/SMB hosting
β”‚   β”œβ”€β”€ evasion.py          # Encoding, obfuscation
β”‚   β”œβ”€β”€ validator.py        # Victim policy check
β”‚   └── utils.py            # Helpers, logging, IP detection
β”œβ”€β”€ payloads/
β”‚   β”œβ”€β”€ templates/
β”‚   β”‚   β”œβ”€β”€ reverse_nc.ps1
β”‚   β”‚   └── custom.bat
β”‚   └── generated/          # Auto-generated payloads
β”œβ”€β”€ templates/
β”‚   └── wix/
β”‚       └── product.wxs
β”œβ”€β”€ config/
β”‚   └── default.yaml
β”œβ”€β”€ logs/
β”‚   └── sessions/
β”œβ”€β”€ tests/
β”‚   └── test_core.py
β”œβ”€β”€ Dockerfile
β”œβ”€β”€ requirements.txt
β”œβ”€β”€ setup.sh                # One-click Kali setup
β”œβ”€β”€ README.md
└── LICENSE
````







## πŸ› οΈ Requirements

- **Operating System**: Kali Linux (recommended), Ubuntu 20.04+, or WSL2
- **Python**: 3.8+
- **Tools**: `docker`, `netcat-openbsd`, `python3-pip`
- **Optional**: `socat` for advanced listeners

> πŸ’‘ No root required for most operations β€” except HTTP server (port 80).

---

## πŸš€ Quick Start

### 1. Clone the Repository

````
git clone https://github.com/Nin-Kanong/MSI-Exploit-k4.git
cd MSI-Exploit-k4
````














> **Next-Gen Red Team Framework for MSI-Based Privilege Escalation**

![Banner](https://via.placeholder.com/800x200?text=MSI-Exploit-k4+v4.0)

## πŸ”₯ Features

- βœ… **Auto-installs Metasploit** if missing
- βœ… **Dual payload engines**: `msfvenom` + **WiX (PowerShell)**
- βœ… **Multiple listeners**: Netcat, Socat, Python TCP
- βœ… **AV evasion**: shikata_ga_nai, Base64 obfuscation
- βœ… **Flexible delivery**: HTTP, HTTPS, SMB
- βœ… **Victim validation**: auto-check connectivity
- βœ… **Modular & extensible** architecture
- βœ… **Docker support**
- βœ… **Professional logging**

## πŸ› οΈ Requirements

- Kali Linux (recommended)
- Python 3.8+
- Docker (for WiX payloads)

## πŸš€ Quick Start

```bash
git clone https://github.com/yourusername/MSI-Exploit-k4.git
cd MSI-Exploit-k4
chmod +x setup.sh
./setup.sh
./msi_exploit.py --ip 192.168.1.100