admin/conquest
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
213 Commits 2 Branches 0 Tags
77c8a321deb8de08f8534b9663418260cd85d9d4
Commit Graph

43 Commits

Author SHA1 Message Date
Jakob Friedl
77c8a321de Removed warnings and unused imports. 2025-10-31 16:59:10 +01:00
Jakob Friedl
7f89487fb7 Implemented agent kill date. 2025-10-28 21:01:10 +01:00
Jakob Friedl
7417cb2822 Update README.md 2025-10-27 22:26:59 +01:00
Jakob Friedl
f30f1d2ec0 Separated 'exit' and 'self-destroy' and added functionality to remove agents from the teamserver to cleanup the sessions table. 2025-10-27 15:17:56 +01:00
Jakob Friedl
0e9cffb1c4 Improved 'exit' command and implemented self-delete functionality. 2025-10-24 12:26:44 +02:00
Jakob Friedl
432f37755c Updated directory structure and added simple 'exit' command to terminate an agent. 2025-10-23 17:28:07 +02:00
Jakob Friedl
c6875e5eb2 Implemented jitter. 2025-10-23 11:14:26 +02:00
Jakob Friedl
51748639de Implemented human-readable error messages for Windows API and Native API errors using FormatMessageW. Removed string obfuscation/protection when agent is built with verbose flag. 2025-10-21 22:37:57 +02:00
Jakob Friedl
0bf717992e Implemented setting for verbose mode that prints debug messages in the windows where the agent is executed. Setting "verbose" to false disables all console output of the agent program. 2025-10-20 22:08:06 +02:00
Jakob Friedl
2e18decb6d Implemented 'steal-token' command. 2025-10-19 20:06:40 +02:00
Jakob Friedl
a4f37b5ceb Implemented most token functionality using Native APIs instead of Windows APIs. 2025-10-19 18:05:20 +02:00
Jakob Friedl
35bb4d8869 Implemented 'disable-privilege' command. 2025-10-18 13:05:01 +02:00
Jakob Friedl
ba1f1943fc Implemented 'enable-privilege' command. 2025-10-18 12:41:55 +02:00
Jakob Friedl
b3e82fc3a8 Reworked token functions. 2025-10-17 18:35:40 +02:00
Jakob Friedl
76930c9302 Implemented 'token-info' command that returns statistics, group memberships and privileges of the current access token. 2025-10-17 17:22:31 +02:00
Jakob Friedl
4a1a70da4d Impersonated user is displayed in the client UI and persisted in the team server database. 2025-10-17 13:01:12 +02:00
Jakob Friedl
0fc8ff3caa Standardized console spacing between commands. 2025-10-17 09:42:08 +02:00
Jakob Friedl
dea10ba7d5 Started work on token module and implemented 'make-token' command to impersonate a user from username and password. 2025-10-16 19:29:49 +02:00
Jakob Friedl
df04eafc13 Made changes to screenshot handling. 2025-10-14 21:05:36 +02:00
Jakob Friedl
d9372dc880 Refactored textarea from console, eventlog and buildlog into a separate widget to reduce code duplication. 2025-10-13 21:55:29 +02:00
Jakob Friedl
ae09e4e7e3 Implemented basic Tab-autocompletion for agent console. 2025-10-03 09:59:50 +02:00
Jakob Friedl
5c0beb36ff Added remote address and modules to agent structure. Help command now only shows commands for which the agent has been configured. 2025-10-02 10:25:37 +02:00
Jakob Friedl
039c857027 Moved task parsing logic to the client to be able to support dotnet/bof commands when operating from a different machine than the team server. Disabled sequence tracking due to issues. 2025-09-30 10:04:29 +02:00
Jakob Friedl
933a72f920 Improved module selection in payload generation modal with tooltips from the module manager. 2025-09-27 12:36:59 +02:00
Jakob Friedl
8baf65a96d Improved dual list selection widget. 2025-09-24 19:26:17 +02:00
Jakob Friedl
3173122878 Implemented dynamic sleepmask configuration command. 2025-09-19 10:11:20 +02:00
Jakob Friedl
5d09efd823 Reworked module system. Modules can now be individually set to be included in the agent. For example, it is possible to compile an agent only capable of executing BOFs and nothing else. 2025-09-17 15:55:13 +02:00
Jakob Friedl
94f2f8121c Implemented 'dotnet' command for execute-assembly functionality. Patched AMSI using HWBP 2025-09-13 11:47:19 +02:00
Jakob Friedl
d0545ffd16 Implemented 'screenshot' command. 2025-09-03 19:38:22 +02:00
Jakob Friedl
4ae9add3af Implemented simple upload command. 2025-09-01 20:27:00 +02:00
Jakob Friedl
ae083896b6 Implemented simple download command. 2025-09-01 19:45:39 +02:00
Jakob Friedl
8292a5b1ff Implemented handling of different argument types (int, wstring, short) for BOF files using specific prefixes. 2025-08-30 14:05:09 +02:00
Jakob Friedl
4ceb756cfd Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00
Jakob Friedl
a18ad3c2cb Removed Ekko WinAPI implementation to clear up file. 2025-08-27 18:24:44 +02:00
Jakob Friedl
8791faec3f Implemented compile-time string obfuscation via XOR for the agent. 2025-08-26 15:11:43 +02:00
Jakob Friedl
c9df7aba64 Improved logging format. 2025-08-21 15:08:52 +02:00
Jakob Friedl
72fcb0d610 Refactor profile de/serialization, removing unnecessary overhead caused by TLV format. 2025-08-19 14:34:58 +02:00
Jakob Friedl
c7980d219d Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00
Jakob Friedl
e403ac1c07 Refactored utility functions to make them more readable and removed separate register endpoint. 2025-08-14 12:25:06 +02:00
Jakob Friedl
ea00e67e80 Updated ps command output. 2025-08-06 12:46:53 +02:00
Jakob Friedl
dfcafa9c24 Implemented basic "ps" and "env" commands. 2025-08-01 13:16:12 +02:00
Jakob Friedl
0d54b3e64b Cleaned up parts of the serialization by removing redundant code. 2025-07-28 21:29:47 +02:00
Jakob Friedl
7bf135750c Rework module system. Now modules/commands are defined in a single file each, with both the function executed by teh agent and the definition for server-side argument parsing. 2025-07-25 16:41:29 +02:00