infosecn1nja
/
Empire
mirror of https://github.com/infosecn1nja/Empire.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,194 Commits
11 Branches
13 Tags
21 MiB
Commit Graph

1194 Commits (4162d54f6f8a50eddddbdcf34a79137af6438578)

Author SHA1 Message Date
Carrie Roberts 1dae7bd3b5 safety check in case of untrusted sessionID 2017-09-21 11:09:02 -06:00
Carrie Roberts a2ef7dab9d Modified the PowerShell keylogger to write to local file instead of stdout 2017-09-20 15:22:10 -06:00
xorrior 55834180d4 Fix powerbreach modules 2017-09-20 16:27:05 -04:00
xorrior b1c359e4b9 Fix powerbreach modules 2017-09-20 16:22:04 -04:00
Steve Borosh ee390adc27 Merge pull request #709 from clr2of8/dev 
added option to expand ps object in order to view domain policy details
 2017-09-19 17:50:14 -04:00
Carrie Roberts 932aedb4aa added option to expand powershell object in order to view domain policy details 2017-09-19 12:08:51 -06:00
Steve Borosh 086df98ed9 Merge pull request #662 from utkusen/patch-1 
adding M2Crypto library to install.sh
 2017-09-17 16:53:32 -04:00
athegist 9c7064371c Fixes vbscript string literal quoting. 2017-09-17 14:55:35 -05:00
Piotr Marszalik 60d835d1e0 Invoke-PowerDump bug - corrupt hash fix 
Fixed the bug where the hashes are not being extracted correctly when LM is disabled and history is enabled.

Rather than relying on length, LM and NT headers are checked. Four bytes at 0xa0 show if LM exists and four bytes at 0xac show if NT exists. Details on this known issue can be found in the following whitepaper from blackhat:
https://media.blackhat.com/bh-us-12/Briefings/Reynolds/BH_US_12_Reynods_Stamp_Out_Hash_WP.pdf

This same bug has been fixed in other frameworks sharing the code:
https://github.com/rapid7/metasploit-framework/pull/4233
https://github.com/trustedsec/social-engineer-toolkit/pull/98
https://github.com/samratashok/nishang/pull/3
 2017-09-14 14:57:22 -05:00
Steve Borosh dfb049ed48 Update changelog 2017-09-10 09:29:27 -04:00
Steve Borosh a0798bb45b Merge pull request #686 from cobbr/improved-powershell-install 
Better powershell install, obfuscation bug fixes, fixed vbs/macro launchers
 2017-09-10 09:28:52 -04:00
cobbr b0f647d4b9 Better powershell install, obfuscation bug fixes, fixed vbs/macro launchers 2017-09-10 02:12:46 -05:00
Chris Ross cf6f760b94 Merge pull request #676 from theguly/dev 
add launcher_lnk with ps payload
 2017-09-06 13:32:02 -04:00
xorrior df64b1e6d1 Rest fix from #657 2017-09-06 11:14:36 -04:00
xorrior 2973bfe0c9 Rest fix for Deleting agent results 2017-09-06 10:57:58 -04:00
Chris Ross 2677363e50 Merge pull request #657 from byt3bl33d3r/master 
Removed GroupName as required option in get_group_member module,  reverted a commit that broke the RESTful API
 2017-09-06 10:41:45 -04:00
ThePirateWhoSmellsOfSunflowers ef7660febd fix quotes 
similar to #674
 2017-09-05 18:23:19 +02:00
ThePirateWhoSmellsOfSunflowers 2b2096d2e4 fix macro launcher 
Fix typo
 2017-09-05 17:23:03 +02:00
Chris Ross 6cf73fe272 Merge pull request #677 from raminfp/master 
Fixed global name 'ssl' is not defined
 2017-09-03 19:40:05 -04:00
root a67b733f2b Fixed global name 'ssl' is not defined 2017-09-03 16:05:19 -04:00
guly b70ad183ee add launcher_lnk with ps payload 2017-09-03 11:50:09 +02:00
Chris Ross 6ec96ee1aa Merge pull request #547 from n0clues/creds_args 
RESTfulAPI - api/admin/login fix
 2017-09-02 11:00:18 -04:00
xorrior dffd332614 Fix for #579 2017-09-02 10:58:00 -04:00
xorrior a6ae921f29 Update rest ssl.SSLContext object 2017-09-02 10:52:05 -04:00
xorrior 1f8364c69c Fix for #631 2017-09-02 10:15:45 -04:00
xorrior 47400cd720 Fix for #631 2017-09-02 09:46:51 -04:00
xorrior 9a818291bc Increased range limit for PSInject source to accomodate increased launcher size 2017-09-01 17:04:24 -04:00
xorrior dfd91c9cd8 Increased range limit for PSInject source to accomodate increased launcher size 2017-09-01 17:03:34 -04:00
Chris Ross 58a6af027d Update empire 2017-08-31 21:16:10 -04:00
Chris Ross 8d489ae66d Update empire 2017-08-31 21:15:12 -04:00
xorrior cda37e726d Added Limit option to computerdetails module 2017-08-31 21:06:24 -04:00
xorrior fb7bee6f4c Fixed generate_launcher function sig for dbx and http_mapi listeners 2017-08-31 20:41:58 -04:00
xorrior 071fd99aba Fixed generate_launcher function sig for dbx and http_mapi listeners 2017-08-31 20:39:14 -04:00
xorrior 4c513d2551 Added some additional proxy logic 2017-08-31 16:37:17 -04:00
xorrior 9ebd0c163c Added logic to use manual proxy settings through the entire staging process and then pass to the agent 2017-08-31 16:28:47 -04:00
xorrior 08a3cc0dcc Re-added Working hours logic for python 2017-08-31 12:31:59 -04:00
xorrior c80ac9c078 Re-added python working hours logic 2017-08-31 12:19:59 -04:00
xorrior 19b4a7158c working hours fix for listeners 2017-08-31 11:42:21 -04:00
xorrior 1e2a4009e0 Working hours fix for all listeners 2017-08-31 11:28:24 -04:00
xorrior d1a8375048 WorkingHours fix 2017-08-31 10:54:32 -04:00
xorrior a2939533bb small change 2017-08-31 09:23:49 -04:00
xorrior c5e8329058 added ssl import 2017-08-31 09:22:46 -04:00
xorrior 79d2bdbb5f add ssl import 2017-08-31 09:21:33 -04:00
xorrior 015e0104d6 Merge fix for TLSv1 error 2017-08-31 08:54:56 -04:00
xorrior cbf934d080 Fix for TLSv1 error 2017-08-31 08:54:28 -04:00
xorrior 3820b2d7ee Merge branch 'dev' of https://github.com/EmpireProject/Empire into dev 2017-08-30 21:44:27 -04:00
xorrior 1d97d87722 TLS v1.0 error fix in #643 2017-08-30 21:43:53 -04:00
Steve Borosh 720685c6b4 Update changelog 2017-08-30 21:30:35 -04:00
rvrsh3ll 26b0bd9c6f Merge branch 'master' of https://github.com/empireproject/Empire 2017-08-30 21:29:07 -04:00
rvrsh3ll c8334b9a66 Fixed Macro syntax error per@utkusen #664 2017-08-30 21:28:34 -04:00