Block a user
e985a9f628
Added configuration option in yaml config file to specify the path to server content for every domain
7bc6f9e622
Agent parameters during generation are now based on yaml config file. Only things left are modules, working on it now.
e968936f04
Downlaod message string is now also encrypted. Unfortunetely, I understand that I will need to refactor all of these, because 4 different functions for sending/receiving messages and data is bad architectural design by default, add overhead and makes it hard to maintain.
5db505b90d
Implemented encryption for file upload command. Fixed few bugs with cookies not being correctly decoded because of wrong buffer creation ( wchar_t cookieValue[valueLength + 1]; ) and fixed few error codes.
759e1a107f
I ditched SSL transport as managing two protocols at the same time is tiring. I decided to stich with HTTPS as it is enough for 99% cases and is more stealthy. Messages are now encrypted and sent in base64, on server side - decoded and decrypted.
2d83259d58
Implemented strings encryption, message length header, remove beacon code, remove some useless flags and code
f0538cd3a8
I decided to stick with strings communication for now, as implementing TLV is a bit hard for me now and I do not want to do JSON either (mainly because of a need to use external linrary). But I implemented encryption for strings communication.
d160b44190
HTTPS communication channel was implemented for agent. Uploading files to server is not yet supported, but will be in nearest future.
1a7c30cfbd
Changed operator's command parsing logic to not panic in certain cases. Changed how "show task" command works and replaced with "tasks", which works both in general and agent contexts
af8d80b1cd
Restructured operator's terminal code and added channel to gracefully close terminal on "exit|quit" command and Ctrl+C
e8de1b8e9b
Fixed file path handling in download/upload commands. Removed debugLog() and infoLog(), will see if it will be comfortable for me to work like this. Made server log a bit clearer by removing unnecessary log statements. Removed WolfSSL as it's not needed anymore. Changed logging style in agent. And overall cleaned unused pieces of code in both agent and server.
5827982fa0
Added http communication channel to agent. Fixed minor bug with system info reporting. Thinking to get rid of beacon at all, or repurpose it.
92e1ba5723
Implemented optional logging. It only works in debug mode. In production builds - strings are striped from binary
93cfc91e88
Payload now runs windows-less. Added possibility to enable windows mode when using make. Added instructions to makefile.
cb79f61c25
Fixed agent's receive module func signature. Fixed task result message not sent to operator. And added PID to agent's info.
4dbbb47694
Beacon is now fully integrated into http transport. Enchanced structure of htpp listener on server. Fixed problems with pid and ppid in injection logic.
88e433a3d3
File structure change. TaskID fix in task result sending logic. PID is now formated and sent correctly.
507c1d1cce
Extended transport interface for a new http function, which take two buffers now. One static for messages embedded into cookie, second - dynamically allocated buffer for actual http reponse.
7454624762
Added https listener to beacon. Currently only basic commands work, downloading/uploading files and downloading shellcode do not work.
925bb8fd92
Added task id logic: now agent reports task result with task id after "TASKRESULT" message part, which helps identify task and operator who issued it.
6b1f158a12
Big messages are now sent with POSt request. Message size limit and headers-indicators are configurable.