infosecn1nja
/
PoshC2_Python
mirror of https://github.com/infosecn1nja/PoshC2_Python.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added ImplantID to the C2Server window for all new implants

chunking
benpturner 2019-02-20 16:11:27 +00:00
parent 2802fac07a
commit e94f401da6
2 changed files with 25 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

43
DB.py
View File

@ -50,7 +50,7 @@ def initializedb():
URLID INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
RandomID TEXT,
URL TEXT,
HostHeader TEXT,
HostHeader TEXT,
ProxyURL TEXT,
ProxyUsername TEXT,
ProxyPassword TEXT,
@ -88,11 +88,11 @@ def initializedb():
Referer TEXT,
APIToken TEXT,
APIUser TEXT,
EnableNotifications TEXT);"""
EnableNotifications TEXT);"""
create_history = """CREATE TABLE History (
ID INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
Command TEXT);"""
Command TEXT);"""
conn = sqlite3.connect(Database)
c = conn.cursor()
@ -201,7 +201,7 @@ def get_history_dict():
if result:
return result
else:
return None
return None
def get_history():
conn = sqlite3.connect(Database)
@ -216,7 +216,7 @@ def get_history():
if history:
return history
else:
return None
return None
def get_implants():
conn = sqlite3.connect(Database)
@ -227,7 +227,7 @@ def get_implants():
if result:
return result
else:
return None
return None
def get_implanttype( randomuri ):
conn = sqlite3.connect(Database)
@ -260,7 +260,7 @@ def get_hostdetails( implant_id ):
if result:
return result
else:
return None
return None
def get_randomuri( implant_id ):
conn = sqlite3.connect(Database)
@ -271,7 +271,7 @@ def get_randomuri( implant_id ):
if result:
return result
else:
return None
return None
def add_autorun(Task):
conn = sqlite3.connect(Database)
@ -316,18 +316,18 @@ def select_mods( randomuri ):
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT ModsLoaded FROM Implants WHERE RandomURI=?", (randomuri,))
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
return result
else:
return None
return None
def select_item(column, table):
conn = sqlite3.connect(Database)
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT %s FROM %s" % (column, table))
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
return result
else:
@ -367,6 +367,7 @@ def new_implant(RandomURI, User, Hostname, IpAddress, Key, FirstSeen, LastSeen,
c = conn.cursor()
c.execute("INSERT INTO Implants (RandomURI, User, Hostname, IpAddress, Key, FirstSeen, LastSeen, PID, Proxy, Arch, Domain, Alive, Sleep, ModsLoaded, Pivot, Label) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)", (RandomURI, User, Hostname, IpAddress, Key, FirstSeen, LastSeen, PID, Proxy, Arch, Domain, Alive, Sleep, ModsLoaded, Pivot, Label))
conn.commit()
return c.lastrowid
def insert_task(randomuri, command, user):
now = datetime.datetime.now()
@ -550,7 +551,7 @@ def get_sharpurls():
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT SocksURLS FROM C2Server")
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
return result
else:
@ -561,9 +562,9 @@ def get_allurls():
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT URLS FROM C2Server")
result1 = str(c.fetchone()[0])
result1 = str(c.fetchone()[0])
c.execute("SELECT SocksURLS FROM C2Server")
result2 = str(c.fetchone()[0])
result2 = str(c.fetchone()[0])
result = result1+","+result2
if result:
return result
@ -575,7 +576,7 @@ def get_beaconurl():
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT URLS FROM C2Server")
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
url = result.split(",")
return url[0]
@ -587,7 +588,7 @@ def get_otherbeaconurls():
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT URLS FROM C2Server")
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
return result
else:
@ -598,7 +599,7 @@ def get_newimplanturl():
conn.row_factory = sqlite3.Row
c = conn.cursor()
c.execute("SELECT URLS FROM C2Server")
result = str(c.fetchone()[0])
result = str(c.fetchone()[0])
if result:
url = result.split(",")
return "/"+url[0].replace('"', '')
@ -614,7 +615,7 @@ def get_hostinfo(randomuri):
if result:
return result[0]
else:
return None
return None
def get_c2urls():
conn = sqlite3.connect(Database)
@ -625,7 +626,7 @@ def get_c2urls():
if result:
return result
else:
return None
return None
def get_autoruns():
conn = sqlite3.connect(Database)
@ -636,7 +637,7 @@ def get_autoruns():
if result:
return result
else:
return None
return None
def get_autorun():
conn = sqlite3.connect(Database)
@ -650,7 +651,7 @@ def get_autorun():
if autoruns:
return autoruns
else:
return None
return None
def get_pid(randomuri):
conn = sqlite3.connect(Database)

5
Implant.py
View File

@ -27,6 +27,7 @@ class Implant(object):
self.UserAgent = get_defaultuseragent()
self.Sleep = get_defaultbeacon()
self.ModsLoaded = ""
self.ImplantID = ""
self.Pivot = pivot
self.KillDate = get_killdate()
self.ServerURL = new_serverurl = select_item("HostnameIP", "C2Server")
@ -52,7 +53,7 @@ IMGS19459394%s49395491SGMI""" % (self.RandomURI, self.AllBeaconURLs, self.KillDa
it = self.Pivot
if (it == "OSX"):
it = "Python"
print "New %s implant connected: (uri=%s key=%s)" % (it, self.RandomURI, self.Key)
print "[%s] New %s implant connected: (uri=%s key=%s)" % (self.ImplantID, it, self.RandomURI, self.Key)
print "%s | Time:%s | PID:%s | Sleep:%s | %s (%s) | URL:%s" % (self.IPAddress, self.FirstSeen, self.PID, self.Sleep, (self.User+" @ "+self.Hostname), self.Arch, self.Proxy)
print "",Colours.END
@ -98,7 +99,7 @@ IMGS19459394%s49395491SGMI""" % (self.RandomURI, self.AllBeaconURLs, self.KillDa
print "SMS send error: %s" % e
def save(self):
new_implant(self.RandomURI, self.User, self.Hostname, self.IPAddress, self.Key, self.FirstSeen, self.FirstSeen, self.PID, self.Proxy, self.Arch, self.Domain, self.Alive, self.Sleep, self.ModsLoaded, self.Pivot, self.Label)
self.ImplantID = new_implant(self.RandomURI, self.User, self.Hostname, self.IPAddress, self.Key, self.FirstSeen, self.FirstSeen, self.PID, self.Proxy, self.Arch, self.Domain, self.Alive, self.Sleep, self.ModsLoaded, self.Pivot, self.Label)
def autoruns(self):
new_task("loadmodule Stage2-Core.ps1", "autoruns", self.RandomURI)