infosecn1nja
/
Empire
mirror of https://github.com/infosecn1nja/Empire.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
916 Commits
11 Branches
13 Tags
21 MiB
Commit Graph

916 Commits (f8ada8a81bd747d2df436a54e12bbaa58787055f)

Author SHA1 Message Date
Jeff McCutchan 3b8d18a41e Added "LegacyMacro" option which creates a macro compatible with Office 97-2003 documents. 2015-10-14 17:08:43 -04:00
enigma0x3 d5344b6716 Merge pull request #51 from xorrior/master 
Modified Invoke-WinEnum
 2015-10-13 06:56:12 -04:00
enigma0x3 4f413b1a98 Updated name so the script loads correctly. 2015-10-12 17:26:59 -04:00
enigma0x3 a46bdac77d Updated to remove testing code and return "script" 2015-10-08 19:24:08 -04:00
i223t b35ce82976 417 Expectation failed error fix 2015-10-02 09:13:23 +01:00
HarmJ0y ffb88a6e53 Merge pull request #52 from PowerShellEmpire/skywalker_fix 
Skywalker fix
 2015-09-22 19:13:44 -04:00
Harmj0y 6be3d4ce8b remove debug 2015-09-22 09:34:27 -04:00
Harmj0y 858f6b3a1c Additional download file path checks. 2015-09-22 09:33:21 -04:00
Harmj0y 9079a54119 Fix for 'skywalker' file overwrite exploit on control server. 
Thank you to @zeroSteiner for the disclosure!
 2015-09-21 22:32:46 -04:00
xorrior 7541ea23e8 Modified Invoke-WinEnum 
Added Firewall Rules enumeration. Slightly modified file searches to
only pull files owned by the user. Changed formatting.
 2015-09-14 16:34:32 -04:00
Harmj0y ed8c476f43 Added credentials/mimikatz/mimitokens to take advantage of Mimikatz' token listing/elevation 
Added management/enable_multi_rdp to patch terminal services to allow mutiple connections
 2015-09-12 08:32:43 -04:00
Harmj0y 140c4baf7a Fixed write_dllhijacker. 2015-09-12 08:23:12 -04:00
enigma0x3 7390ce012c Delete Invoke-BypassUAC.ps1~ 2015-09-12 12:44:01 +02:00
enigma0x3 d581538fd1 updated description 2015-09-09 13:46:07 +02:00
enigma0x3 eaedd354c7 updated to support win10 2015-09-04 21:20:30 -04:00
enigma0x3 629c8f695c Updated to change comment wording 2015-09-03 07:55:48 -04:00
enigma0x3 21c9cdce87 Merge pull request #48 from pasv/template_fix 
Fixed module template to reflect required OutputExtension parameter
 2015-09-03 07:55:02 -04:00
pasv 22dea0ba0a Fixed module template to reflect required OutputExtension parameter 2015-09-03 04:05:45 -04:00
pasv 875284be7a Working release 2015-09-03 03:44:34 -04:00
Harmj0y fd1d17a647 Added /dc option to credentials/mimikatz/dcsync 2015-09-02 21:43:01 -04:00
enigma0x3 5b9b8c281f Merge pull request #44 from Jack64/patch-1 
fix hard-coded event subscription name
 2015-08-31 19:00:01 -04:00
Jack64 d06370e4f1 fix hard-coded event subscription name 
Before this change, the command
` set SubName `
did not change the event subscription name installed by the agent as instructed by the user.
 2015-08-31 15:45:38 +01:00
Harmj0y a92189b95c Updated changelog and version for 1.2 release. 2015-08-30 15:59:50 -04:00
Harmj0y e1cdef1d19 Removed print output 2015-08-30 15:47:47 -04:00
Harmj0y 40fda2dd04 Merge branch 'master' of https://github.com/PowerShellEmpire/Empire 2015-08-29 20:35:10 -04:00
Harmj0y c021bdf6f3 Credentials from collection/prompt now scraped into the creds db 2015-08-29 20:34:23 -04:00
HarmJ0y bf72039053 Merge pull request #43 from PowerShellEmpire/hash_alg_update 
Converted message HMAC from MD5 to SHA1
 2015-08-29 20:07:26 -04:00
Harmj0y 788be8b06a Converted message HMAC from MD5 to SHA1 2015-08-27 18:40:19 -04:00
Harmj0y a669c85824 Modified war stager to not drop any temp files to disk. 2015-08-26 20:23:10 -04:00
HarmJ0y c0d7fcaf55 Merge pull request #30 from ch33kyf3ll0w/master 
Added the war.py Stager
 2015-08-26 20:18:50 -04:00
HarmJ0y 8eaf601ea5 Merge pull request #33 from PowerShellEmpire/inveigh 
Integration of Kevin Robertson's Inveigh project
 2015-08-26 17:23:52 -04:00
enigma0x3 2b63f7b787 Merge pull request #32 from PowerShellEmpire/bypassuac_wscript 
added privesc/bypassuac_wscript
 2015-08-25 21:23:30 -04:00
enigma0x3 d3fc5137d4 added privesc/bypassuac_wscript 2015-08-25 21:18:48 -04:00
Harmj0y fb9c18769f Added collection/inveigh. 2015-08-25 17:21:59 -04:00
Justin 29c923ab26 Merge pull request #31 from PowerShellEmpire/international_support 
International support
 2015-08-24 23:02:04 -04:00
sixdub 4bd5ee8915 Update Changelog 2015-08-24 22:57:48 -04:00
sixdub d1ce277330 Merge branch 'master' into international_support 2015-08-24 22:56:58 -04:00
ch33kyf3ll0w ef64deb25d Created war.py 
Wrote a new stager that deploys the empire agent via WAR file.
 2015-08-24 18:40:06 -05:00
HarmJ0y e1b18986db Merge pull request #29 from PowerShellEmpire/mimikatz_8_15_update2 
Mimikatz 8 15 update2
 2015-08-24 19:39:28 -04:00
ch33kyf3ll0w 13d8a0a241 Merge pull request #1 from PowerShellEmpire/master 
Update with Main
 2015-08-24 18:28:29 -05:00
sixdub 32e95b4f93 Fixed credential parsing bug 2015-08-24 18:42:32 -04:00
Harmj0y b2cca2f3fd Added credentials/mimikatz/dcsync for remote DC credential extraction 
Added situational_awareness/network/get_domaintrusts
Added /sids argument for credentials/mimikatz/golden_ticket
Added credential parsing for dcsync output
updated links for PowerTools
 2015-08-24 17:33:35 -04:00
root 31febba7cb Modified packet. Support unicode chars in agent 2015-08-24 09:04:21 -04:00
Justin cf935db0ae Merge pull request #18 from 1njected/master 
Added support for custom proxy and fixed Epoch/counter to support other cultures/datetime-formats
 2015-08-24 08:00:58 -04:00
HarmJ0y 64d263a382 Merge pull request #26 from PowerShellEmpire/mimikatz_8_15_update 
Mimikatz 8_15 update
 2015-08-24 01:53:33 -04:00
Harmj0y 59633fefa1 More bug fixes for lsadump::dcsync. 2015-08-24 01:45:04 -04:00
Harmj0y 683e6403c3 Added -Domain option for lsadump::dcsync in credentials/mimikatz/dcsync 2015-08-24 01:33:12 -04:00
Harmj0y be637dd38a Updated .dll for Invoke-Mimikatz, including lsadump::dcsync functionality. 2015-08-24 01:28:11 -04:00
HarmJ0y b4c5b3963c Merge pull request #25 from PowerShellEmpire/agent_internal_revamp 
Agent internal revamp
 2015-08-23 23:21:56 -04:00
Harmj0y 4e9e0d0cb4 Updated changelog. 2015-08-23 17:18:13 -04:00