HTML Application Attack

An HTML Application is a Windows program written in HTML and an Internet Explorer-supported scripting language. This package generates an HTML Application that runs a Cobalt Strike listener. This attack gives you the option to use an executable or PowerShell to run your payload. Go to Attacks -> Packages -> HTML Application.

This attack has several methods to run the selected listener. The Executable method will write an executable to disk and run it. The PowerShell method will use a PowerShell one-liner to run your payload stager. The VBA method uses a Microsoft Office macro to inject your payload into memory. The VBA method requires Microsoft Office on the target system.