infosecn1nja
/
Empire
mirror of https://github.com/infosecn1nja/Empire.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
606 Commits
11 Branches
13 Tags
21 MiB
Commit Graph

62 Commits (18829ba867813bb21689af520554034f111befbf)

Author SHA1 Message Date
@424f424f 46138f52b5 Modify changelog 2016-09-29 09:34:29 -04:00
HarmJ0y 26cd0089dd 2.0.0 beta, DerbyCon release 2016-09-23 14:04:35 -04:00
HarmJ0y 2ba4e7c3c6 prep for 1.6.0 release 2016-09-17 17:16:03 -04:00
Matt Nelson e4aff013d5 Update changelog 2016-08-15 18:01:19 -04:00
Matt Nelson f786441364 Update changelog 2016-08-13 21:28:48 -04:00
Harmj0y bec33f73ac moved collection/keethief to collection/vaults/keethief 
added collection/vaults/find_keepass_config to enumerate KeePass configs on a system
added collection/vaults/add_keepass_config_trigger to add a trigger backdoor to all reachable KeePass instances
added collection/vaults/get_keepass_config_trigger to enumerate all triggers for all reachable KeePass instances
added collection/vaults/remove_keepass_config_trigger to remove all triggers for all reachable KeePass instances
misc. bug fixes
 2016-07-20 23:44:30 -04:00
Harmj0y 7790b250a2 misc. bug fixes and standardization updates 2016-07-20 23:39:25 -04:00
Harmj0y fe43560bad Fix for issue #285 - credential export supporting commas 
Start of code standardization/pep8 cleanup - mods to agents.py, empire.py, and credentials.py
Updated changelog
 2016-07-20 21:28:27 -04:00
Matt Nelson 576de97817 Update changelog 2016-06-24 22:55:04 -04:00
Matt Nelson 91f01e239e Update changelog 2016-06-24 22:54:52 -04:00
Matt Nelson 37cd95838f Update changelog 2016-06-24 22:22:12 -04:00
Matt Nelson 7e7e4e2e23 Update changelog 2016-06-24 21:26:45 -04:00
Matt Nelson 2e30da7a42 Update changelog 2016-06-24 21:06:24 -04:00
Matt Nelson 6044a601a3 Update changelog 2016-06-24 20:14:39 -04:00
Harmj0y 37f129fe81 tightened up argparse validation 2016-05-02 18:13:38 -04:00
Harmj0y b977dec1ae Updated PowerView 
Added credentials/get_spn_tickets to request user SPN tickets
Added credentials/mimikatz/extract_tickets to extract kerberos tickets from memory
Updated PowerView location citations
 2016-04-24 11:26:39 -04:00
Matt Nelson f3142287fe Update changelog 2016-04-21 17:12:43 -04:00
Harmj0y b56e5d29ec listener starting now returns more verbose errors on failure in console and API 
merge of @mynameisiv's .jpg screenshot PR
fix for path errors in some cases for ./setup/setup_database.py
 2016-04-01 17:06:21 -04:00
Harmj0y 791071c4d6 updated changelog 2016-03-31 17:25:08 -04:00
Harmj0y ac5b002301 Updated changelog and version number for 1.5.0 release. 2016-03-31 16:06:02 -04:00
Harmj0y 68ca017105 Updated changelog 2016-03-26 00:20:32 -04:00
Harmj0y e3ed56cde9 Updated changelog. 2016-02-17 22:37:25 -05:00
Harmj0y b0d90be6fe Updated changelog and version number. Added '--version' cli option. 2016-02-16 02:27:37 -05:00
Harmj0y 8281a9e7ba Empire 1.4 release. 
Encompases all changes since tagged 1.3.1 release.
Added 'Contribution Rules' to the README.md
 2015-12-29 19:29:05 -05:00
Harmj0y 687954b6ef -Sync of Kevin Robertson's lateral_movement/inveigh_relay module 
-Sync stufus' exfiltration/egresscheck module
-Added module menu dynamic sizing for prettified output
 2015-12-22 15:05:22 -05:00
Harmj0y c12eac3200 Added trollsploit/rick_ascii 2015-12-16 20:36:07 -05:00
Harmj0y 93c1d46236 Updated powerview.ps1 
Added situational_awareness/network/powerview/get_cached_rdpconnection
Added situational_awareness/network/powerview/set_ad_object
Added management/downgrade_account
 2015-12-11 17:56:25 -05:00
Harmj0y cb67368e2e Updated version and changelog 2015-11-30 23:23:03 -05:00
Harmj0y 66b7aa17f1 Added several modules in management/mailraider/* to integrate @xorrior's MailRaider.ps1 2015-11-29 11:58:16 -05:00
Harmj0y 8637a49338 Fixed nested menu bug that caused buildup of "Agent X not active." 
Main display menu now shows each time "main" menu is entered.
 2015-11-21 20:03:40 -05:00
Harmj0y 062a806dd6 Certificate generation added to setup.sh 2015-11-21 18:24:17 -05:00
Harmj0y 2c14853b29 Fix for exploitation/exploit_jboss 2015-11-21 18:07:57 -05:00
Harmj0y c9afcc138f Updated PowerView, added situational_awareness/network/powerview/get_forest 2015-11-08 19:36:20 -05:00
Harmj0y 7db7ec6bbc All PowerUp modules now dynamically built from a single source file 
PowerUp bug fixes
Added privesc/powerup/service_exe_restore, pulled logic from other modules
Added management/spawnas to spawn agents with explicit credentials
Debug functionality (--debug) now outputs the source of the last tasked script to ./LastTask.ps1
Write-Verbose and Write-Debug lines now stripped from tasked scripts
 2015-11-08 18:51:57 -05:00
Harmj0y 4e95039bc4 added persistence/misc/add_netuser to add local/domain users 2015-11-04 15:19:06 -05:00
Harmj0y 55709598d5 Bug fix in some packet responses. 2015-11-02 14:52:46 -05:00
Harmj0y 1bedcee211 Updated version number and changelog for 1.3.1 2015-10-30 12:08:57 -04:00
Harmj0y 26ce47782b changelog update 2015-10-27 15:20:41 -04:00
Harmj0y 5e28a08ff9 changelog for merge 2015-10-27 15:18:26 -04:00
Harmj0y 0cbdb165a2 -Updated powerview.ps1 source to Version 2.0 
-Built a way to dynamically generate the stripped PowerView code for functions needed by PowerView modules (helpers -> generate_dynamic_powershell_script), and updated all relevant PowerView modules
-Renamed PowerView modules to better match PowerView 2.0 naming scheme and moved to situational_awareness/network/powerview/*
-Removed old split-out PowerView source files
-Removed situational_awareness/network/netview
-Combined stealth_userhunter into option for userhunter
-Added situational_awareness/network/get_forest_domain, situational_awareness/network/powerview/get_object_acl, situational_awareness/network/powerview/find_computer_field, situational_awareness/network/powerview/find_user_field, situational_awareness/network/powerview/get_ou, situational_awareness/network/powerview/get_group, situational_awareness/network/powerview/get_group_member, situational_awareness/network/powerview/get_gpo, situational_awareness/network/powerview/find_gpo_location, situational_awareness/network/powerview/find_gpo_computer_admin, situational_awareness/network/powerview/process_hunter, situational_awareness/network/powerview/find_foreign_group, situational_awareness/network/powerview/find_foreign_user
-renamed collection/filesearch to collection/find_interesting_file
 2015-10-23 21:40:06 -04:00
Harmj0y 9079a54119 Fix for 'skywalker' file overwrite exploit on control server. 
Thank you to @zeroSteiner for the disclosure!
 2015-09-21 22:32:46 -04:00
Harmj0y ed8c476f43 Added credentials/mimikatz/mimitokens to take advantage of Mimikatz' token listing/elevation 
Added management/enable_multi_rdp to patch terminal services to allow mutiple connections
 2015-09-12 08:32:43 -04:00
Harmj0y a92189b95c Updated changelog and version for 1.2 release. 2015-08-30 15:59:50 -04:00
Harmj0y a669c85824 Modified war stager to not drop any temp files to disk. 2015-08-26 20:23:10 -04:00
sixdub 4bd5ee8915 Update Changelog 2015-08-24 22:57:48 -04:00
sixdub 32e95b4f93 Fixed credential parsing bug 2015-08-24 18:42:32 -04:00
Harmj0y b2cca2f3fd Added credentials/mimikatz/dcsync for remote DC credential extraction 
Added situational_awareness/network/get_domaintrusts
Added /sids argument for credentials/mimikatz/golden_ticket
Added credential parsing for dcsync output
updated links for PowerTools
 2015-08-24 17:33:35 -04:00
Harmj0y 4e9e0d0cb4 Updated changelog. 2015-08-23 17:18:13 -04:00
Harmj0y 39d974bb09 Continued porting native shell commands to WMI replacents in agent core 
In agent menu, 'shell CMD' now runs straight IEX CMD, and 'help agentcmds' shows safe aliases
Modified ./setup/reset.sh to work from parent or ./setup/ folders
 2015-08-20 14:35:42 -04:00
Harmj0y ae741e2c85 Implement agent route command in WMI. 2015-08-19 20:51:36 -04:00