Codebase list poshc2 / lintian-fixes/main poshc2-ansible-main.yml
lintian-fixes/main

Tree @lintian-fixes/main (Download .tar.gz)

poshc2-ansible-main.yml @lintian-fixes/mainraw · history · blame 

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
# Ansible 'main.yml' for PoshC2 Install
# @BaffledJimmy @ Nettitude Red Team
# Automates the install of a PoshC2 server, customises killdate, comms URLs / domain fronts, then downloads the payloads to your local box.

--- 
- name: Install PoshC2 and configure for unattended first use
  become: true 
  hosts: localhost

  vars_prompt:
  - name: "ProjectName"
    prompt: "Enter your ProjectName"
    private: no
  - name: "C2URL"
    prompt: "Which C2 URL will be used for initial payload generation? (include https:// for each URL in the array - eg: www.attacker1.com,www.attacker2.com)"
    private: no
  - name: "DomFront"
    prompt: "Do you have valid domain fronts to add too (no https:// required)?, comma separated. If using fronting, ensure the same number of URLs and Host headers are used."
    private: no
  - name: KillDate
    prompt: "Enter KillDate YYYY-MM-DD"
    private: no
  
  tasks:
   
  - name: Check if PoshC2 files are present.
    stat:
      path: /opt/PoshC2/Install.sh
    register: poshc2_present

  - name: Clone PoshC2 if needed.
    become: true
    git:
      repo: 'https://github.com/nettitude/PoshC2.git'
      dest: /opt/PoshC2/
      version: master
    when: poshc2_present.stat.exists == false
    
  - name: Run PoshC2 install script
    become: true
    command: ./Install.sh -b master -p /opt/PoshC2
    args:
      chdir: /opt/PoshC2
    when: poshc2_present.stat.exists == false

  - name: Create PoshC2 Project
    become: true
    command: '/opt/PoshC2/resources/scripts/posh-project -n {{ ProjectName }}'
    
  - name: Update the config.yml with the C2 URL, then used by Posh for payload creation.
    lineinfile:
      path: /var/poshc2/{{ ProjectName }}/config.yml
      regexp: 'PayloadCommsHost: "https://127.0.0.1"'
      line: 'PayloadCommsHost: "{{ C2URL }}"'
      backup: yes

  - name: Update the config.yml with the KillDate, then used by Posh for payload creation.
    lineinfile:
      path: /var/poshc2/{{ ProjectName }}/config.yml
      regexp: 'KillDate: "2020-10-01"'
      line: 'KillDate: "{{ KillDate }}"'
      backup: yes
    
  - name: Update the config.yml with the DomFront, then used by Posh for payload creation.
    lineinfile:
      path: /var/poshc2/{{ ProjectName }}/config.yml
      regexp: 'DomainFrontHeader: ""'
      line: 'DomainFrontHeader: "{{ DomFront }}"'
      backup: yes

  - name: Start posh-service using a tweaked version of /PoshC2/resources/scripts/posh-service to work with Ansible.
    become: true
    shell: '/opt/PoshC2/resources/scripts/posh-service-ansible'

  - name: Pausing for 20 seconds to allow for payload creation.
    pause:
      seconds: 20

  - name: Zipping the Payloads directory for convenience - no rsync here!
    archive: 
      path: /var/poshc2/{{ ProjectName }}/payloads/
      dest: /tmp/{{ ProjectName }}_Payloads.zip
      format: zip

  - name: Downloading the Payloads zip to your local box.
    fetch: 
      src: /tmp/{{ ProjectName }}_Payloads.zip
      dest: /tmp/{{ ProjectName }}
      flat: true

 
  - name: Downloading the rewrite rules for {{ ProjectName }}.
    fetch: 
      src: /var/poshc2/{{ ProjectName }}/rewrite-rules.txt
      dest: /tmp/{{ ProjectName }}_Rewrite.txt
      flat: yes