v5.11.4 into main #745

vinnybod · 2024-09-04T04:16:43Z

This PR was automatically generated by the release-public-start workflow.
This PR should be merged with a merge commit, not a squash commit.
Merging this PR will trigger a tag and release automatically.

…pireProject#879) * fixed issue where background ps tasks would check in continuously * fixed background ps task in c# agent

* updated rubeus to 2.3.2 * updated execution method and fixed arg parsing * Update config.yaml * Fixed Rubeus killing agent when certain options were given that use System.Environment.Exit

* fixed option parsing errors in credentials/tokens * fixed mimikatz pth requiring creded * formatting

…private v5.11.3 into private-main

Updated link to script source code

…d509997bdeb7c3803b4bce536db89f09e34a4 Cherry-pick 1aad509 to private-main

This reverts commit 45bd7d2, reversing changes made to 6da438e.

* nameserver: discover nameserver within environment of this host * CHANGELOG.md: Update the changelog * fixit! Add CHANGELOG.md verbiage that was removed * Update CHANGELOG.md Co-authored-by: Vincent Rose <[email protected]> * fixit! Update author name as string Seems the author name is being interpreted as byte data using the GitHub install. --------- Co-authored-by: Vincent Rose <[email protected]>

…private v5.11.4 into private-main

This reverts commit 4c3f776.

github-actions · 2024-09-04T04:45:01Z

Coverage Report

File	Stmts	Miss	Cover	Missing
empire/server
server.py	130	35	73%	58–60, 63–66, 95, 99, 117–123, 132–133, 140–143, 154–157, 167, 175, 180, 184–185, 197–215
empire/server/api
app.py	106	24	77%	25–27, 31, 36–43, 60–66, 91–97, 159, 164–174
jwt_auth.py	71	10	86%	53, 55, 57, 66, 84, 86–87, 90, 101, 112
middleware.py	12	2	83%	39–40
empire/server/api/v2
shared_dto.py	60	3	95%	68, 84, 90
empire/server/api/v2/agent
agent_api.py	50	1	98%	88
agent_file_api.py	34	1	97%	72
agent_task_api.py	181	22	88%	113–137, 204, 280–281, 313, 322, 339, 360, 389, 404, 423, 440, 457, 476, 495, 518, 533, 547, 562, 568
empire/server/api/v2/download
download_api.py	37	1	97%	57
empire/server/api/v2/listener
listener_api.py	59	4	93%	85, 90, 104, 116
listener_dto.py	48	2	96%	303, 306
listener_template_api.py	18	1	94%	47
empire/server/api/v2/obfuscation
obfuscation_api.py	68	1	99%	132
empire/server/api/v2/plugin
plugin_task_api.py	44	4	91%	81–101, 163
empire/server/api/v2/profile
profile_api.py	46	2	96%	61, 76
empire/server/api/v2/stager
stager_dto.py	44	2	95%	222, 225
stager_template_api.py	18	1	94%	44
empire/server/api/v2/tag
tag_api.py	36	1	97%	77
empire/server/api/v2/user
user_api.py	67	5	93%	60, 83–85, 136, 160
empire/server/api/v2/websocket
socketio.py	92	47	49%	34–39, 42–46, 50–62, 66–68, 80–85, 101–106, 123–128, 140–143, 155, 158, 161, 166
empire/server/common
agents.py	712	581	18%	103–108, 122, 137–143, 165–203, 210–220, 226–235, 270–321, 325–332, 338–386, 393, 422–435, 448–464, 470–482, 493–506, 512–525, 531–547, 627–677, 706–721, 727–730, 742–760, 766–773, 798–1065, 1081–1155, 1165–1225, 1234–1280, 1317–1350, 1356–1365, 1369–1427, 1432–1446, 1451, 1454–1476, 1479–1480, 1485, 1489–1490, 1507, 1521–1767
credentials.py	44	30	32%	39–52, 61–122, 130–161
encryption.py	167	111	34%	42–44, 48, 57–59, 67–68, 77–81, 96–108, 112–117, 124–125, 133–142, 149–156, 164–170, 177–191, 198–202, 209–210, 240, 264–285, 291–306, 312–323, 329, 335, 342, 353–355, 361–374, 380
helpers.py	348	178	49%	84–88, 95–96, 111, 194–195, 235, 242–244, 390–424, 434–560, 581, 588–598, 611–621, 626–630, 633–642, 656–664, 670–671, 673–674, 676–677, 700, 712–713, 735–737, 744, 767, 770–772, 775–777, 784–786
listeners.py	8	2	75%	15–20
packets.py	112	75	33%	160, 181–186, 211–248, 256–294, 321–370, 422–425
plugins.py	18	3	83%	28, 33, 38
pylnk.py	590	442	25%	202, 206, 210, 214, 218–223, 227–235, 239–243, 247–251, 255–263, 267, 271, 275, 279, 284–287, 291–292, 296–301, 305–311, 315, 319–327, 337–338, 342–344, 364–366, 369–370, 375–378, 383, 386–388, 391, 394–399, 402, 407, 410–414, 419–452, 455–457, 473, 478–485, 488, 493, 498–526, 529–537, 542–556, 559–594, 599, 604–612, 615–634, 637–640, 643–650, 655, 660–688, 693–716, 719–734, 737–753, 756–789, 792–820, 823, 826–827, 832, 835–837, 842, 845–846, 851, 854–855, 860, 863–864, 869, 872–873, 878, 881–882, 887, 890–894, 899, 904–926, 933–935, 939–954
socks.py	43	30	30%	12–13, 17–19, 25–31, 35–42, 46–57, 60
stagers.py	354	293	17%	27–28, 55–63, 93, 100–101, 118, 131, 152–153, 161–181, 189–204, 212–248, 256–276, 284–298, 305–346, 352–401, 409–564, 568–638, 641–677, 680–690, 693–788, 792–804
templating.py	30	9	70%	61–63, 72–74, 83–85
empire/server/common/malleable
implementation.py	236	26	89%	162, 164, 347, 351, 356, 476–495, 527
profile.py	127	17	87%	103–104, 144–145, 154, 195, 206, 220, 226, 237, 250, 261, 293, 316–319
transaction.py	374	80	79%	167–186, 199, 214–218, 261, 270, 286–290, 294, 304, 353, 404, 430, 441–442, 448, 469–497, 606–612, 631, 644–646, 753–760, 773, 784, 879, 881, 892, 894, 896
transformation.py	373	121	68%	184, 186, 188, 213, 224–225, 227, 235–236, 238, 284, 290, 294, 325–351, 356–396, 404–441, 456, 467–468, 470, 478–479, 481, 683, 685, 687, 689, 699–700, 724–728, 732, 736, 760, 773, 778, 790, 792–794, 796, 811, 813–815, 817, 835–840, 856, 861, 877–884, 900, 905
utility.py	43	13	70%	29, 45–48, 60–66, 120, 128
empire/server/core
agent_service.py	101	16	84%	81, 84, 87, 136, 162–180, 195
agent_task_service.py	190	36	81%	66–69, 85, 87, 93, 96, 99, 107, 109, 111, 116, 121, 141–146, 175, 206–209, 221, 226–229, 237, 239, 268–285, 373–381
bypass_service.py	65	4	94%	31, 37, 60–61
config.py	97	6	94%	123–126, 135–136
credential_service.py	49	3	94%	32–33, 41
download_service.py	97	22	77%	45, 51, 57, 61, 67–70, 73, 93, 95, 97, 99, 104, 109, 130–141
hooks.py	67	8	88%	77–79, 88–90, 124, 127
hooks_internal.py	115	66	43%	29, 32, 42–46, 115–145, 155–190, 203–222, 232–256
listener_service.py	186	30	84%	67, 108, 136–137, 146, 156, 166–168, 191–194, 244–253, 274, 284–286, 289–293, 324–328
module_models.py	74	8	89%	84–95, 99–101
module_service.py	370	105	72%	97, 133, 146, 154–158, 162, 169–173, 177–207, 223–268, 347–349, 360, 364, 376–386, 413, 434, 436, 501–524, 527–529, 540–542, 586–587, 604, 618, 627, 631–633, 657, 677–695, 703–704, 722, 754
obfuscation_service.py	139	17	88%	95–97, 108, 121, 126–128, 145–149, 156–159, 233, 251–254
plugin_service.py	185	27	85%	63, 98–99, 103–104, 120–121, 135, 177, 183–187, 275–278, 294, 300, 303, 306, 314, 316, 318, 323, 328
profile_service.py	61	2	97%	41, 85
stager_service.py	98	5	95%	53, 88, 130, 135, 158
stager_template_service.py	47	1	98%	57
tag_service.py	71	17	76%	45, 47, 49, 51, 53, 55, 59–62, 65, 68, 76–79, 84, 87
user_service.py	41	2	95%	15, 50
empire/server/core/db
base.py	89	18	80%	27–29, 37–42, 60, 74–83, 159–165
defaults.py	44	6	86%	87–92, 100–101
models.py	300	10	97%	262–266, 278, 281, 329, 353, 356, 420, 423
empire/server/listeners
dbx.py	446	358	20%	143, 150–161, 183–184, 207–211, 230, 241–245, 280, 289, 300–303, 326–327, 333–345, 355, 360–363, 365, 380–485, 499–584, 592–644, 695–1001, 1010–1016, 1022–1025
http.py	538	337	37%	231–234, 275, 288, 296–307, 318–321, 342–349, 384, 394–396, 424–427, 435–436, 445–459, 469, 474–479, 483–516, 531–532, 547–602, 626, 630, 633–635, 641–644, 659–660, 672–696, 700, 722, 725–732, 743–744, 777–780, 788–1216
http_com.py	366	285	22%	165–166, 173–187, 208–209, 229–234, 243–246, 276–283, 289, 307, 316, 338–421, 435–478, 486–512, 518–824, 831–837, 843–846
http_foreign.py	168	70	58%	141, 148–153, 175–178, 197–201, 212, 224–226, 233–238, 244–247, 275, 284, 292, 296–299, 323–324, 336–352, 362, 367–372, 375–378, 393–394, 403–404, 412–452, 458, 464
http_hop.py	233	143	39%	99, 106, 128–129, 147–151, 161, 173–175, 182–187, 222, 231, 241, 249–252, 280–281, 290–303, 313, 318–321, 324–327, 342–465, 474–475, 483–523, 531–575, 581
http_malleable.py	624	467	25%	163–164, 191, 239, 246–251, 277–278, 296–302, 358, 368–371, 378–389, 399, 408, 418–423, 430, 458–459, 463, 472–473, 484–500, 537–539, 546, 554, 559–564, 567–570, 585–708, 722–804, 813–1301, 1309–1694
onedrive.py	377	309	18%	158, 161–191, 210–211, 223–227, 247–249, 255–260, 279, 287, 295, 311–371, 378–415, 429–472, 475–870, 877–883, 889–892
port_forward_pivot.py	370	267	28%	75–76, 82, 104–105, 124–128, 139, 151–154, 161–172, 183–186, 210–218, 234, 243, 253, 257–260, 290–294, 300–301, 313–329, 339–342, 347–350, 353–387, 402–513, 527–615, 624–664, 672–836, 843–933
smb.py	207	181	13%	67–68, 74, 93–220, 235–300, 314–363, 372–406, 414–470, 477
empire/server/modules/bof
clipboard_window_inject.py	22	16	27%	16–50
nanodump.py	55	50	9%	14–84
secinject.py	22	16	27%	16–50
tgtdelegation.py	10	4	60%	16–22
empire/server/modules/bof/situational_awareness
netGroupList.py	8	3	62%	14–19
netGroupListMembers.py	8	3	62%	14–19
netLocalGroupList.py	8	3	62%	14–19
netLocalGroupListMembers.py	8	3	62%	14–19
netloggedon.py	8	3	62%	14–19
netshares.py	8	3	62%	14–19
windowlist.py	9	4	56%	14–21
wmi_query.py	9	4	56%	14–21
empire/server/modules/csharp
Assembly.Covenant.py	19	13	32%	16–45
AssemblyReflect.Covenant.py	19	13	32%	16–45
Inject_BOF.Covenant.py	29	19	34%	23–63
ProcessInjection.Covenant.py	69	59	14%	3–4, 24–126
Shellcode.Covenant.py	22	16	27%	16–48
ThreadlessInject.Covenant.py	61	51	16%	7–8, 27–120
empire/server/modules/powershell/code_execution
invoke_ntsd.py	54	48	11%	15–97
invoke_reflectivepeinjection.py	32	24	25%	19–62
invoke_shellcode.py	20	3	85%	34–35, 41
invoke_shellcodemsil.py	15	9	40%	16–38
empire/server/modules/powershell/collection
SharpChromium.py	26	16	38%	22–48
WireTap.py	18	10	44%	18–34
get_sql_column_sample_data.py	39	33	15%	15–70
minidump.py	19	11	42%	18–34
packet_capture.py	17	12	29%	14–31
screenshot.py	22	16	27%	16–43
empire/server/modules/powershell/credentials
credential_injection.py	35	25	29%	20–70
tokens.py	29	21	28%	18–65
empire/server/modules/powershell/credentials/mimikatz
dcsync_hashdump.py	21	15	29%	16–42
golden_ticket.py	34	25	26%	21–66
lsadump.py	15	9	40%	16–34
mimitokens.py	34	28	18%	16–58
pth.py	34	25	26%	21–64
silver_ticket.py	39	31	21%	18–73
trust_keys.py	14	8	43%	16–31
empire/server/modules/powershell/exfiltration
PSRansom.py	24	18	25%	16–46
empire/server/modules/powershell/exploitation
exploit_eternalblue.py	17	11	35%	16–37
empire/server/modules/powershell/lateral_movement
inveigh_relay.py	32	26	19%	16–81
invoke_dcom.py	33	27	18%	16–80
invoke_executemsbuild.py	52	45	13%	17–108
invoke_psexec.py	35	29	17%	16–82
invoke_psremoting.py	41	34	17%	17–92
invoke_smbexec.py	37	31	16%	16–88
invoke_sqloscmd.py	44	37	16%	16–80
invoke_sshcommand.py	31	24	23%	17–64
invoke_wmi.py	46	39	15%	17–101
invoke_wmi_debugger.py	57	49	14%	17–157
jenkins_script_console.py	25	18	28%	17–58
new_gpo_immediate_task.py	33	26	21%	17–93
empire/server/modules/powershell/management
invoke_bypass.py	13	7	46%	15–23
invoke_script.py	18	12	33%	15–32
logoff.py	10	5	50%	14–21
psinject.py	33	27	18%	16–72
reflective_inject.py	42	34	19%	18–84
runas.py	33	26	21%	17–71
shinject.py	29	22	24%	17–61
spawn.py	26	20	23%	16–68
spawnas.py	44	37	16%	17–72
switch_listener.py	14	8	43%	16–35
user_to_sid.py	7	2	71%	14–18
empire/server/modules/powershell/management/mailraider
disable_security.py	23	17	26%	15–59
get_emailitems.py	16	10	38%	15–39
empire/server/modules/powershell/persistence/elevated
registry.py	64	56	12%	19–157
schtasks.py	78	70	10%	19–197
wmi.py	87	79	9%	19–251
wmi_updater.py	73	65	11%	19–214
empire/server/modules/powershell/persistence/misc
add_sid_history.py	15	9	40%	16–33
debugger.py	35	29	17%	16–108
empire/server/modules/powershell/persistence/powerbreach
deaduser.py	37	29	22%	18–138
eventlog.py	34	26	24%	18–115
resolver.py	37	29	22%	18–124
empire/server/modules/powershell/persistence/userland
backdoor_lnk.py	48	40	17%	19–112
registry.py	74	66	11%	19–197
schtasks.py	75	67	11%	19–190
empire/server/modules/powershell/privesc
ask.py	20	14	30%	16–61
bypassuac.py	22	16	27%	16–54
bypassuac_env.py	23	17	26%	16–54
bypassuac_eventvwr.py	23	17	26%	16–55
bypassuac_fodhelper.py	23	17	26%	16–55
bypassuac_sdctlbypass.py	23	17	26%	16–55
bypassuac_tokenmanipulation.py	28	20	29%	19–57
bypassuac_wscript.py	22	16	27%	16–54
ms16-032.py	18	12	33%	16–46
ms16-135.py	18	12	33%	16–46
empire/server/modules/powershell/privesc/powerup
service_exe_stager.py	30	24	20%	16–61
service_stager.py	25	19	24%	16–52
write_dllhijacker.py	26	20	23%	16–67
empire/server/modules/powershell/recon
fetch_brute_local.py	25	19	24%	15–42
find_fruit.py	22	16	27%	16–57
get_sql_server_login_default_pw.py	22	17	23%	14–44
empire/server/modules/powershell/situational_awareness/host
computerdetails.py	46	40	13%	16–104
empire/server/modules/powershell/situational_awareness/network
get_sql_server_info.py	29	24	17%	14–58
empire/server/modules/powershell/situational_awareness/network/powerview
get_gpo_computer.py	38	31	18%	18–95
get_subnet_ranges.py	35	28	20%	17–78
empire/server/modules/python/collection/osx
imessage_dump.py	15	10	33%	14–176
native_screenshot_mss.py	11	5	55%	16–20
prompt.py	14	9	36%	14–43
search_email.py	12	1	92%	19
sniffer.py	23	18	22%	14–151
empire/server/modules/python/lateral_movement/multi
ssh_launcher.py	17	11	35%	15–32
empire/server/modules/python/management/multi
spawn.py	13	7	46%	16–28
empire/server/modules/python/management/osx
shellcodeinject64.py	17	9	47%	18–136
empire/server/modules/python/persistence/multi
desktopfile.py	14	8	43%	15–28
empire/server/modules/python/persistence/osx
CreateHijacker.py	20	13	35%	23–44
LaunchAgent.py	21	14	33%	17–53
LaunchAgentUserLandPersistence.py	16	10	38%	15–47
loginhook.py	12	7	42%	14–20
mail.py	29	21	28%	18–131
empire/server/modules/python/privesc/multi
CVE-2021-3560.py	16	9	44%	18–41
CVE-2021-4034.py	21	13	38%	19–47
bashdoor.py	11	6	45%	15–27
sudo_spawn.py	18	12	33%	16–37
empire/server/modules/python/privesc/osx
dyld_print_to_file.py	17	10	41%	24–39
piggyback.py	17	11	35%	16–35
empire/server/modules/python/situational_awareness/host/osx
situational_awareness.py	14	9	36%	14–196
empire/server/plugins/ChiselServer-Plugin
chiselserver.plugin	101	71	30%	66–71, 89–184
empire/server/plugins/Report-Generation-Plugin
advanced_reporting.plugin	147	107	27%	67–111, 134–151, 155–176, 179–188, 191–201, 204–220, 227–259, 262–276, 282–285, 298–300
mitre.py	124	85	31%	17–18, 21, 24, 28, 31–40, 44–58, 62–65, 69–71, 74–75, 78–80, 84–103, 106–107, 110–111, 114–115, 118–119, 124–128, 131–135, 138, 143, 146–147, 155–156, 165–181, 189–201, 209, 217–225, 236–237, 245–259, 262–272, 275
empire/server/plugins/SocksProxyServer-Plugin
socksproxyserver.plugin	136	104	24%	83–88, 103–122, 125–130, 137–141, 146–177, 180–188, 191–214, 217–232
empire/server/plugins/basic_reporting
basic_reporting.py	74	51	31%	43–74, 86–95, 100–109, 114–126, 142–146
empire/server/plugins/csharpserver
csharpserver.py	151	108	28%	54–70, 78–122, 125–153, 156–167, 170–195, 198–223, 234–238
empire/server/plugins/example
example.py	30	30	0%	3–111
empire/server/plugins/reverseshell_stager_server
reverseshell_stager_server.py	109	85	22%	122–128, 131, 146–209, 214, 217–226, 229–245, 248–261
empire/server/plugins/websockify_server
websockify_server.py	54	31	43%	67–74, 77, 92–125
empire/server/stagers/multi
bash.py	22	14	36%	67–91
generate_agent.py	37	29	22%	90–138
launcher.py	34	6	82%	116–124, 147–148
macro.py	51	41	20%	120–196
pyinstaller.py	51	6	88%	100–102, 113–114, 143
war.py	44	34	23%	91–182
empire/server/stagers/osx
applescript.py	18	10	44%	62–81
application.py	25	16	36%	81–105
ducky.py	25	18	28%	60–88
dylib.py	25	17	32%	73–99
jar.py	17	10	41%	60–78
macho.py	17	10	41%	60–80
macro.py	39	31	21%	85–182
pkg.py	27	19	30%	72–105
safari_launcher.py	22	15	32%	67–92
shellcode.py	23	16	30%	68–157
teensy.py	76	69	9%	61–143
empire/server/stagers/windows
backdoorLnkMacro.py	147	128	13%	151–158, 162–481
bunny.py	48	39	19%	107–176
cmd_exec.py	45	34	24%	105–162, 165–177
csharp_exe.py	48	40	17%	102–168
dll.py	40	11	72%	107–108, 112, 115–118, 121–132, 156–157
ducky.py	42	34	19%	94–161
hta.py	37	29	22%	86–145
launcher_bat.py	51	9	82%	90–91, 110, 125–135, 145–146
launcher_lnk.py	38	29	24%	118–180
launcher_sct.py	52	44	15%	96–174
launcher_vbs.py	34	26	24%	82–138
launcher_xml.py	83	75	10%	82–191
macro.py	79	19	76%	159, 163, 166–177, 200–201, 227–239
ms16-051.py	34	26	24%	95–149
nim.py	51	42	18%	83–168
reverseshell.py	22	12	45%	61–65, 68–84
shellcode.py	57	46	19%	5–6, 107–181
teensy.py	113	105	7%	82–218
wmic.py	42	34	19%	96–159
empire/server/utils
data_util.py	48	9	81%	34–43, 56–57, 59, 63
file_util.py	26	1	96%	28
listener_util.py	28	10	64%	13–19, 97–108
log_util.py	51	7	86%	41–43, 46–49
math_util.py	5	3	40%	9–11
option_util.py	74	18	76%	97, 117–131, 140–148, 158
TOTAL	17670	9336	47%

Tests	Skipped	Failures	Errors	Time
347	0 💤	0 ❌	0 🔥	11m 19s ⏱️

vinnybod and others added 14 commits August 10, 2024 11:24

attempt to fix docker action (EmpireProject#871)

5aaa9e4

Fixed issue where background ps tasks would check in continuously (Em…

e5e59bc

…pireProject#879) * fixed issue where background ps tasks would check in continuously * fixed background ps task in c# agent

Updated Rubeus to 2.3.2 and fixed arg parsing (EmpireProject#881)

e7d2ba4

* updated rubeus to 2.3.2 * updated execution method and fixed arg parsing * Update config.yaml * Fixed Rubeus killing agent when certain options were given that use System.Environment.Exit

Fixed option parsing errors in credentials/tokens (EmpireProject#880)

b459ab7

* fixed option parsing errors in credentials/tokens * fixed mimikatz pth requiring creded * formatting

Prepare release 5.11.3 private

541146c

Merge pull request EmpireProject#883 from BC-SECURITY/release/5.11.3-…

673a7ff

…private v5.11.3 into private-main

Update WebcamRecorder.yaml (#742)

6257ee2

Updated link to script source code

Merge pull request EmpireProject#885 from BC-SECURITY/cherry-pick-1aa…

6da438e

…d509997bdeb7c3803b4bce536db89f09e34a4 Cherry-pick 1aad509 to private-main

Merge branch 'main' into private-main

45bd7d2

Revert "Merge branch 'main' into private-main"

4c3f776

This reverts commit 45bd7d2, reversing changes made to 6da438e.

Prepare release 5.11.4 private

fdd6a24

Merge pull request EmpireProject#886 from BC-SECURITY/release/5.11.4-…

89a207c

…private v5.11.4 into private-main

Reapply "Merge branch 'main' into private-main"

f083ada

This reverts commit 4c3f776.

vinnybod merged commit 21880d8 into main Sep 4, 2024
5 of 6 checks passed

vinnybod deleted the release/5.11.4 branch September 4, 2024 04:35

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v5.11.4 into main #745

v5.11.4 into main #745

vinnybod commented Sep 4, 2024

github-actions bot commented Sep 4, 2024

v5.11.4 into main #745

v5.11.4 into main #745

Conversation

vinnybod commented Sep 4, 2024

github-actions bot commented Sep 4, 2024