Commit d02c06ad414c16f8adda46d324d942bd9f697faf - powershell-empire

Refresh patches Sophie Brun 3 years ago

2 changed file(s) with 21 addition(s) and 18 deletion(s). Raw diff Collapse all Expand all

+14

-11

debian/patches/change-database-location.patch less more

1	1	Date: Fri, 27 Dec 2019 09:25:49 +0100
2	2	Subject: change-database-location
3	3
4		Last-Update: 2020-10-19
	4	Last-Update: 2020-11-30
5	5	---
6		empire \| 18 +++++++++++++++++-
	6	empire \| 21 ++++++++++++++++++---
7	7	lib/common/__init__.py \| 4 +++-
8	8	lib/common/agents.py \| 21 +++++++++++----------
9	9	lib/common/empire.py \| 9 +++++----
10	10	lib/common/helpers.py \| 6 +++---
11	11	setup/reset.sh \| 20 ++++++++++----------
12	12	setup/setup_database.py \| 2 +-
13		7 files changed, 50 insertions(+), 30 deletions(-)
	13	7 files changed, 51 insertions(+), 32 deletions(-)
14	14
15	15	diff --git a/empire b/empire
16		index 8178180..1245e29 100755
	16	index c8cb21e..5eed7db 100755
17	17	--- a/empire
18	18	+++ b/empire
19		@@ -22,6 +22,22 @@ from time import sleep
	19	@@ -24,8 +24,23 @@ from time import sleep
	20
20	21	from flask import Flask, request, jsonify, make_response, abort, url_for, g
21	22	from flask.json import JSONEncoder
22		from flask_socketio import SocketIO, emit
	23	-from flask_socketio import SocketIO, emit, join_room, leave_room, \
	24	- close_room, rooms, disconnect
	25	+from flask_socketio import SocketIO, emit
23	26	+import shutil
24	27	+
25	28	+# database old path

39	42
40	43	# Empire imports
41	44	from lib.common import empire, helpers, users
42		@@ -87,7 +103,7 @@ def database_connect():
	45	@@ -91,7 +106,7 @@ def database_connect():
43	46	sqlite3.register_adapter(datetime, adapt_datetime)
44	47	sqlite3.register_converter("timestamp", convert_timestamp)
45	48	# set the database connectiont to autocommit w/ isolation level

71	74	conn.isolation_level = None
72	75	return conn
73	76	diff --git a/lib/common/agents.py b/lib/common/agents.py
74		index 829eab8..a57baa0 100644
	77	index 9dd24c0..7b80c1e 100644
75	78	--- a/lib/common/agents.py
76	79	+++ b/lib/common/agents.py
77	80	@@ -89,6 +89,7 @@ class Agents(object):

157	160	message = "[!] WARNING: agent {} attempted skywalker exploit!".format(self.sessionID)
158	161	signal = json.dumps({
159	162	diff --git a/lib/common/empire.py b/lib/common/empire.py
160		index 465519b..fef3bed 100755
	163	index 2c7cac9..8bcde38 100755
161	164	--- a/lib/common/empire.py
162	165	+++ b/lib/common/empire.py
163	166	@@ -191,7 +191,7 @@ class MainMenu(cmd.Cmd):

186	189	self.conn.isolation_level = None
187	190	return self.conn
188	191	diff --git a/lib/common/helpers.py b/lib/common/helpers.py
189		index f6bdb21..5d0349e 100644
	192	index 7b5fd6d..81429ed 100644
190	193	--- a/lib/common/helpers.py
191	194	+++ b/lib/common/helpers.py
192	195	@@ -273,7 +273,7 @@ def strip_powershell_comments(data):

264	267	+ rm -rf ~/.local/powershell-empire/downloads/
265	268	fi
266	269	diff --git a/setup/setup_database.py b/setup/setup_database.py
267		index 915abbb..025492f 100755
	270	index ec88437..cb6151a 100755
268	271	--- a/setup/setup_database.py
269	272	+++ b/setup/setup_database.py
270	273	@@ -65,7 +65,7 @@ OBFUSCATE_COMMAND = r'Token\All\1'

-7

debian/patches/rename-jinja2-templates.patch less more

304	304	-exec(agent)
305	305	diff --git a/data/agent/stagers/http.jinja2 b/data/agent/stagers/http.jinja2
306	306	new file mode 100644
307		index 0000000..0a8fe28
	307	index 0000000..2f836a9
308	308	--- /dev/null
309	309	+++ b/data/agent/stagers/http.jinja2
310	310	@@ -0,0 +1,99 @@

321	321	+
322	322	+import random
323	323	+import string
324		+import urllib.request as urllib
	324	+import urllib.request
325	325	+
326	326	+{% include 'common/rc4.py' %}
327	327	+{% include 'common/aes.py' %}

330	330	+
331	331	+def post_message(uri, data):
332	332	+ global headers
333		+ return (urllib.urlopen(urllib.Request(uri, data, headers))).read()
	333	+ return (urllib.request.urlopen(urllib.request.Request(uri, data, headers))).read()
334	334	+
335	335	+# generate a randomized sessionID
336	336	+sessionID = ''.join(random.choice(string.ascii_uppercase + string.digits) for _ in range(8))

409	409	+exec(agent)
410	410	diff --git a/data/agent/stagers/http.py b/data/agent/stagers/http.py
411	411	deleted file mode 100644
412		index ea5f797..0000000
	412	index 02b323e..0000000
413	413	--- a/data/agent/stagers/http.py
414	414	+++ /dev/null
415	415	@@ -1,101 +0,0 @@

428	428	-
429	429	-import random
430	430	-import string
431		-import urllib.request as urllib
	431	-import urllib.request
432	432	-
433	433	-{% include 'common/rc4.py' %}
434	434	-{% include 'common/aes.py' %}

437	437	-
438	438	-def post_message(uri, data):
439	439	- global headers
440		- return (urllib.urlopen(urllib.Request(uri, data, headers))).read()
	440	- return (urllib.request.urlopen(urllib.request.Request(uri, data, headers))).read()
441	441	-
442	442	-# generate a randomized sessionID
443	443	-sessionID = ''.join(random.choice(string.ascii_uppercase + string.digits) for _ in range(8))

528	528	template_options = {
529	529	'staging_folder': stagingFolder,
530	530	diff --git a/lib/listeners/http.py b/lib/listeners/http.py
531		index e04791a..2340db0 100755
	531	index f333889..056b7ab 100755
532	532	--- a/lib/listeners/http.py
533	533	+++ b/lib/listeners/http.py
534	534	@@ -682,8 +682,8 @@ class Listener(object):