pip3 install pycryptodome
Generate a powershell dropper for any DLL or EXE. The shellcode of the payload is generated with Donut. Two powershell script are generated, the first is an AMSI bypass (credit to rasta-mouse) the second is the injector (credit to Metasploit web-delivery PSH). The output is store on ./web, the final command to launch on the victime host is display on the console.
See AMSITrigger and Invoke-Obfuscation for AMSI bypass.
Compatible with linux (GeneratePowershellLauncher.py) and windows (GeneratePowershellLauncher.ps1).