edf040e690
Update get_sql_column_sample_data.py
...
When CheckAll is not true the script didn't assign the str variable scriptEnd prior to trying to add to it with +=.
2017-11-14 14:06:17 -05:00
c13ae0dee5
Updated powerview.ps1 and corresponding modules
2017-11-14 11:18:59 -05:00
47f09ed045
Merge branch 'dev' of https://github.com/EmpireProject/Empire into dev
2017-11-12 17:36:28 -05:00
a5bbc78b9c
Update Invoke-DCOM
2017-11-12 16:01:52 -05:00
6f239d4fc8
Added Kevin Robertson's Invoke-SMBExec.ps1
2017-11-12 15:45:40 -05:00
37e897fe5a
Merge pull request #790 from DakotaNelson/plugins
...
Add basic plugin functionality to Empire
2017-11-12 02:16:24 -05:00
b1338c2388
Merge pull request #808 from p3nt4/patch-2
...
Add MSBuild.exe XML Launcher
2017-11-12 02:03:43 -05:00
2ed7f3eba4
Merge pull request #788 from m7x/FixProxy
...
Fix Proxy Settings
2017-11-12 01:35:20 -05:00
41bfb6cb07
Merge pull request #809 from lsfxz/master
...
Make compatible with more recent pyopenssl
2017-11-09 13:55:36 -05:00
241bf8c9ad
Merge branch 'dev' of https://github.com/malcomvetter/Empire into dev
2017-11-09 00:04:09 -05:00
d1b968330d
Merge pull request #768 from mlinton/patch-4
...
Create Keys.py to extract private keys
2017-11-08 23:44:15 -05:00
7a7e91f275
Add MSBuild.exe XML Launcher
...
This launcher leverages MSBuild.exe to execute the powershell script. It does not require access to powershell.exe so it can be convenient to bypass applocker.
The module code is a rip off from the launcher launcher_sct.py by @subTee and @enigma0x3.
2017-11-09 09:08:59 +11:00
8b6b9ef1c8
Fix flag - listener is required.
2017-11-08 10:44:15 -07:00
97b1e24114
Add missing import
2017-11-02 22:21:25 -04:00
8f3570b390
Added missing import
2017-11-02 22:19:07 -04:00
e5729e67d5
Repair jar stager generation
2017-11-01 20:48:34 -04:00
7fe8c33ae8
Repair jar stager generation logic
2017-11-01 20:45:54 -04:00
6a90084df8
Replicate 794 to master
2017-11-01 13:24:26 -04:00
64e4b370df
Fixed tabs in recent merge
2017-11-01 13:22:14 -04:00
87ad884085
Merge pull request #794 from clr2of8/dev
...
fix bug #792 that was blocking module output (such as mimikatz) from showing on screen
2017-11-01 13:20:01 -04:00
2475ef3b9d
fix bug that was blocking module output (such as mimikatz) from showing on screen
2017-11-01 09:13:07 -06:00
d94229c330
Add missing import
2017-10-31 22:09:08 -04:00
863c1fe42e
add missing import
2017-10-31 22:08:22 -04:00
4e3c8cdd4e
revert encryption settings
2017-10-31 13:10:44 -05:00
12e2e2336c
revert encryption settings
2017-10-31 13:09:10 -05:00
3741b0e786
Minor refactoring to plugin loading code
2017-10-31 13:20:13 +00:00
d539cc69ad
Add basic plugin functionality to Empire
2017-10-31 11:15:14 +00:00
05e6149a86
Update changelog and version
2017-10-29 23:02:58 -04:00
7d33dc31b1
Merge branch 'master' into dev
...
Conflicts:
lib/listeners/http.py
2017-10-29 22:28:32 -04:00
d76d88bc2c
Fix Proxy Settings
2017-10-29 21:17:47 +00:00
6d67f23119
Fix for #777
2017-10-28 11:11:34 -04:00
5d849652d0
Merge pull request #781 from tevora-threat/dev
...
fix broken call to generate on dropbox exfil module, caused by invoke-obfuscation changes
2017-10-27 22:05:25 -04:00
cfdc5d5556
Patch b64decode padding error
2017-10-27 03:47:06 -04:00
8c7310adb1
fix broken call to generate by invoke-obfuscation changes
2017-10-26 13:04:15 -07:00
c1da4a060f
allow new pyOpenSSL, somewhat "better" fix for #697
2017-10-25 10:18:17 +02:00
0eb4cd02d3
Fix tabs in empire.py and http.py
2017-10-24 11:10:59 -04:00
ead8ce05a8
Merge branch 'dev' of https://github.com/empireproject/empire into dev
2017-10-24 10:31:28 -04:00
627aaf268d
Fix stagerURI
2017-10-24 10:31:14 -04:00
c8217e87cf
Fix for stagerURI
2017-10-24 10:30:03 -04:00
2e5d8055b2
Removed additional comments in pyinstaller module
2017-10-24 10:04:33 -04:00
9093b3df9e
Fix for #774
2017-10-24 09:43:51 -04:00
4106db3279
Fixed renegotation loop in stager
2017-10-24 02:45:41 -04:00
dc0f43ee5d
Updated all listeners for renegotiation
2017-10-23 22:03:22 -04:00
6243a6b094
Fixed orphaned agent restaging for powershell
2017-10-23 21:53:42 -04:00
95d8142b39
Remove debug message from xkeylogger module
2017-10-23 21:17:08 -04:00
7a916c988c
Merge pull request #759 from hightopfade/macroless_word_code_exec
...
Pushing module for macroless code exec
2017-10-23 09:39:06 -04:00
d04fd95df1
Update keys.py
2017-10-22 19:20:15 -06:00
f629eb3e08
Add missing slack token and slack channel options for dbx listener
2017-10-22 17:18:51 -04:00
2c7d62593b
Updated obfuscate function arguments in all powershell modules
2017-10-20 23:16:19 -04:00
fcc6eb02e5
Fix #769
2017-10-20 22:07:03 -04:00
3920ef8e74
Create Keys.py to extract private keys
...
Copying the certificate functionality in mimi to also extract private keys.
2017-10-20 15:45:23 -06:00
51e98068bd
moved the macroless word code exec from 'exploits' to 'stagers' per Xorrior
2017-10-20 10:03:02 -04:00
fb8778a103
Merge branch 'dev' into ntsd
2017-10-20 01:46:45 -04:00
7df728a0cf
better crypto error handling
2017-10-19 17:24:42 -05:00
ff73dce80e
multiplatform macro
2017-10-19 17:24:08 -05:00
f8ada8a81b
Finalize Pycrypto removal
2017-10-19 13:56:53 -05:00
47570ee92a
Change out Pycrypto for Cryptography
2017-10-19 13:50:04 -05:00
a645d461ef
changes to the invoke_ntsd module
2017-10-19 11:10:39 -04:00
06f87cc6ee
Merge pull request #762 from elitest/Empyre-Empire
...
Code cleanup from Empyre merge
2017-10-18 18:47:55 -04:00
1cb3e1e375
Merge pull request #750 from clr2of8/dev
...
Added resource file and auto run functionality as in Metasploit
2017-10-18 16:31:17 -04:00
544a0ee282
Merge pull request #718 from nikaiw/dev
...
Fix PR (generate function signature, opsec value)
2017-10-18 14:46:10 -04:00
c814fc942b
Reverted back to support any version of TLS
2017-10-18 08:22:21 -04:00
20519e45be
Migrated from Empyre to Empire in the code.
2017-10-17 18:30:13 -05:00
6a283719f3
fix PS keylogger bug where it only logged to file while you were interacting with the agent
2017-10-17 14:28:25 -06:00
30da1bced1
add ability call resource within a resource file
2017-10-17 10:25:19 -06:00
04e522700f
pushing module for macroless code exec
2017-10-17 09:59:40 -04:00
7e56e552a6
typo correction
2017-10-16 16:28:19 -06:00
21e56bcc3e
make sure autorun exists for agent language
2017-10-16 14:04:30 -06:00
e38662b384
specify the agent language for the autorun, powershell or python for example
2017-10-16 12:55:09 -06:00
69dbc89422
add autorun feature to agents menu to run all commands in a resource file on incoming agents
2017-10-16 09:55:48 -06:00
999970e96a
pushing module for ntsd code exec
2017-10-16 10:23:41 -04:00
888d6efb09
Fix tab
2017-10-15 15:16:20 -04:00
9ab30eb6ea
Merge pull request #754 from ccsplit/dev
...
Fix #749 - Add check for 'Agent' in self.module.options
2017-10-15 15:15:48 -04:00
1474fa9975
Added line strip of asterisks
2017-10-15 15:13:56 -04:00
b971803658
Removed option to set chucksize. Added logic to set it agent side
2017-10-15 12:52:51 -04:00
32990dfe11
Fix for #755
2017-10-14 18:11:00 -04:00
62b26c38bc
Merge pull request #744 from byt3bl33d3r/dev
...
TLS version too low fix
2017-10-14 00:50:14 -04:00
23de7bc71a
removing duplicate method
2017-10-13 21:13:25 -06:00
94725cd64b
Fix #749 - Add check for 'Agent' in self.module.options
...
When attempting to switch Modules it will try to set the current Agent for the
new module that will be used. However, this fails when switching from
`external/generate_agent.py` because it does not have this option within the
self.module.options.
Therefore, I changed it to check if the Key exists within self.module.options
and if it does not exist it will be set to ''.
2017-10-13 19:24:42 -05:00
0485b2b6fd
can call agents from any submenu now
2017-10-13 10:45:55 -06:00
acdb393a01
Merge remote-tracking branch 'upstream/dev' into dev
2017-10-13 10:34:53 -06:00
8a1d076d14
refactoring submenu's to not duplicate so much code
2017-10-13 10:31:35 -06:00
7f4988e951
added help text for resource command
2017-10-12 21:28:45 -06:00
16267f983c
removed debug statements
2017-10-12 16:29:51 -06:00
bc11f3007f
Update version string
2017-10-12 18:27:18 -04:00
67483f4008
Update Version string
2017-10-12 18:26:09 -04:00
753c2e20de
added resource file functionality as in Metasploit
2017-10-12 15:53:32 -06:00
4bf47277e7
using append instead of extend, and reading resource file
2017-10-12 15:45:07 -06:00
083cffd27e
cleaner code for resource files, but still hardcoded
2017-10-12 14:42:43 -06:00
000f81519d
initial resource command working, but hard coded
2017-10-12 14:17:35 -06:00
4aea7272f0
Merged with master
2017-10-12 12:15:44 -04:00
a965fdb2d4
Re-added TLS fix ( #712 )
2017-10-10 20:04:42 -06:00
2df99d25fd
Fixed #716
2017-10-07 23:43:08 -04:00
2755d24efa
Added missing semi colon in launcher code
2017-10-07 23:16:11 -04:00
5c76a34f01
Fixed #675,#697, and #710
2017-10-07 22:39:41 -04:00
4bf2e3da70
Merge branch 'dev/remote' with 'dev/local'
2017-10-07 21:39:58 -04:00
b944a188d2
Fixed obfuscate helper function
2017-10-07 21:38:29 -04:00
3641eb189c
Merge pull request #737 from dchrastil/dev
...
Slack Integration - Notification for new Agents
2017-10-07 17:00:22 -04:00
bcf775cfc0
Improved ScriptBlock logging bypasses
2017-10-07 15:21:13 -05:00
46c670cda0
Fixed comments
2017-10-03 21:10:03 -07:00
Dan McInerney
xorrior
rvrsh3ll
p3nt4
Liam Somerville
Carrie Roberts
malcomvetter
Dakota Nelson
Mike Manzotti
root
evs-ch
mlinton
root
Jim Shaver
ccsplit
byt3bl33d3r
Steve Borosh
cobbr
Danny Chrastil