Commit Graph

36 Commits (ce8094045d051b86ff65047857671984bcb9e880)

Author SHA1 Message Date
pixis 4069cb7290 Add module - Set as owned in BloodHound 2020-05-05 09:59:30 +02:00
mpgn 13dca86a87 Add lsassy requirements 2020-05-01 17:19:39 -04:00
mpgn f58a10124d Update winrm method to allows code execution from normal user
User who can winrm but are not local admin can now use this method to exec command
more at https://github.com/diyan/pywinrm/issues/275

we switch from pywinrm to pypsrp
2020-04-28 15:30:18 -04:00
byt3bl33d3r 6c0228f403 Fixed dependency hell, added Github actions workflow
- Got rid of netaddr in favor of built in ipaddress module
- cme/cmedb binaries are now built with shiv
- Removed http protocol as it was basically useless and added another
  dependency
2020-04-20 13:19:55 -03:00
mpgn 2aca373e33 Upgrade pylnk3 to version 0.3 2020-02-17 02:44:40 -05:00
mpgn a28b730d0d Switch pywinrm thirdparty to pip 2020-02-15 06:01:14 -05:00
mpgn 6ad97132af Fix pylnk error thx to @blshkv 2020-02-14 09:50:15 -05:00
mpgn 545b59054b Fix Pipfile python version and submodile version 2020-01-16 04:34:21 -05:00
dependabot[bot] 75d72bbd7f
Bump urllib3 from 1.24.1 to 1.24.2
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.24.1 to 1.24.2.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/master/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/1.24.1...1.24.2)

Signed-off-by: dependabot[bot] <support@github.com>
2019-10-18 15:00:30 +00:00
byt3bl33d3r 333f1c4e06 Updated all submodules, replace pycrypto with pycryptodomex 2019-03-13 21:51:25 -06:00
Ryan e6cd58e9bb
Update requirements.txt
Adding pycryptodomex to resolve "ImportError: No module named Cryptodome.Hash" after install
2019-03-07 14:31:09 -06:00
byt3bl33d3r ea3402dd0e Updated requirements.txt 2018-08-29 15:35:03 +08:00
byt3bl33d3r 4b35455997 Refactored Database Menu code
- Fixed some MSSQL DB interaction bugs
- Made MSSQL DB schema more consistent
- cmedb output now gets formatted using terminaltables (so perty)
- Made everything a bit more PEP8 compliant
2017-11-02 17:43:08 +08:00
byt3bl33d3r 1603ac4819 Added WINRM support, NMap XML and .Nessus parsing
- Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting)
- Added support for NMap XML and .Nessus files if given as targets
- Fixed a bug in the MSSQL protocol which caused it to not retrieve host info
- Version Bump
2017-10-24 20:08:19 -06:00
byt3bl33d3r 7ed3fa2001 Updated requirements.txt 2017-10-21 20:13:54 -06:00
byt3bl33d3r 0b936def23 Takes care of issue #190 and #191, initial SSH protocol implementation
- Passing --ntds will automatically use the drsuapi method (DCSync)
- Initial implementation of the SSH protocol and the mimipenguin module
  (This is very much still not finished, lots of stuff missing)

- Added check to make sure existing config file is in the 4.x format
- Added splinter and paramiko to dep requirements
- Updated Impacket to latest commit
- HTTP protocol now also returns server version in output
2017-07-09 23:44:58 -06:00
byt3bl33d3r c26d993db4 Added Slinky module, pylnk in requirements 2017-05-04 19:13:11 -06:00
byt3bl33d3r f0752f61b7 Re-wrote the HTTP protocol to use splinter and phantomjs
- All http connections are now concurrent
- Added a flag to take screenshots of webpages
- Minor Code cleanup
2017-04-30 12:54:35 -06:00
byt3bl33d3r d9fb2a506a Fixes #168 and #167 2017-04-26 17:04:15 -06:00
byt3bl33d3r 490494dc1f Added missing requirement 2017-04-06 23:00:40 -06:00
byt3bl33d3r 5dc7c4ae62 Fixed logic errors when adding users and groups to the database
- Added debug logging to core db functions
- Fixed logging output
- Updated modules to use the new API
2017-03-29 18:03:04 -06:00
byt3bl33d3r 751f209cd7 Initial 4.0 pre-release 2017-03-27 15:09:36 -06:00
byt3bl33d3r 9fefd167b0 Initial commit for v4.0
Just fyi for anyone reading this, it's not even close to being
finished.

The amount of changes are pretty insane, this commit is to serve as a
refrence point for myself.

Highlights for v4.0:
- The whole codebase has been re-written from scratch
- Codebase has been cut around 2/4
- Protocols are now modular! In theory we could use CME for everything
- Module chaining has been removed for now, still trying to figure out a
more elegant solution
- Workspaces have implemented in cmedb
- The smb protocol's database schema has been changed to support storing users,
groups and computers with their respective memberships and relations.
- I'm in the process of re-writing most of the modules, will re-add them
once i've finished
2016-12-15 00:28:00 -07:00
byt3bl33d3r f189b50a5f Version bump to 3.1.2
Updated install instructions and setup.py since impacket 0.9.15 has been
released!
2016-06-28 16:28:49 -06:00
byt3bl33d3r 53b49a7c3a Added support for importing Metasploit credentials (closes issue #89) 2016-06-17 21:44:40 -06:00
byt3bl33d3r 68a908562a Second round of refactoring for packaging 2016-06-03 23:42:26 -06:00
byt3bl33d3r eb4f185118 Database now tracks which users have admin access to which hosts
Added a configuration file for specifying Empire's and Metasploits API and RPC creds
Added the empire_agent_exec module: connects to Empire, generates a launcher and executes it

Minor bug fixes
2016-04-08 00:25:06 -06:00
byt3bl33d3r 10a12a9a0f Initial v3.0 commit to master
Quick re-cap on the new features:

* Credentials and hosts are now stored in a database, the cme_db.py script can be used to query it
* Module system has been implemented allowing anyone to create payloads
* All underlying powershell code has been ported to a module
* The HTTP/HTTPS server now tracks connections: no more guessing when to CTRL-C
* All around better code quality, error handling and logging
2016-03-27 15:17:18 -06:00
byt3bl33d3r d383c3df8f Updated requirements.txt 2016-01-17 00:51:25 -07:00
byt3bl33d3r 56fe9aa19a Added Windows support 2015-11-01 18:52:00 -07:00
byt3bl33d3r d022ca4a55 added colored output 2015-08-28 21:17:46 +02:00
Gabriel Tremblay 052351fc38 Fixed Requirements 2015-08-21 10:17:17 -04:00
byt3bl33d3r bb2e30048f added install instructions for kali 2015-08-20 13:45:12 +02:00
byt3bl33d3r ea761c23ca Added list command 2015-08-15 23:40:22 +02:00
byt3bl33d3r a396b76424 Added upload, download and delete commands
Code is now fully concurrent, removed greenlet sync code
If plain text creds are dumped using mimikatz, creds will be parsed and displayed to the user
Full mimikatz output is stored to log files
2015-08-15 22:48:54 +02:00
byt3bl33d3r d0550fa545 Greenlet Output is now partially synced between threads
added temporary logging handler
added options group
2015-08-15 15:32:57 +02:00