All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
The Changelog starts with v0.4.1, because we did not keep one before that, and simply didn't have the time to go back and retroactively create one.
- Possible exception due to pre-registering of
sessionwithmanager - Covered edge case in sudo rule parsing for wildcards (#183)
- Added fallthrough cases for PTY methods in case of misbehaving binaries (looking at you:
screen) - Fixed handling of
socket.getpeernamewhenSocketchannel uses IPv6 (#159). - Fixed verbose logging handler to be unique for every
channel - Fixed docstrings in
Commandmodules - Changed docker base image to
python3.9-alpineto fix python version issues. - Added logic for calling correct paramiko method when reloading an encrypted SSH privat ekey (#185).
- Forced
Stream.RAWfor all GTFOBins interaction (#195). - Added custom
whichimplementation for linux whenwhichis not available (#193). - Correctly handle
--listenargument (#201) - Added handler for
OSErrorwhen attempting to detect the running shell (#179) - Added additional check for stat time of file birth field (#208)
- Removed shell compare with ["nologin", "false", "sync", "git-shell"] (#210)
- Added shell compare with not in ["bash", "zsh", "ksh", "fish"] (#210)
- Added alternatives to
bashto be used during shell upgrade for a better shell - Added a warning message when a
KeyboardInterruptis caught - Added
--verbose/-Vfor argument parser - Added
OSErrorforbindprotocol to show appropriate error messages - Contributing guidelines for GitHub maintainers
- Installation instructions for BlackArch
- Added
lpwdandlcdcommands to interact with the local working directory (#218)
- Removed handling of
shellargument toPopento preventeuidproblems (#179) - Changed some 'red' warning message color to 'yellow'
- Leak private keys for all users w/ file-read ability as UID=0 (#181)
- Raise
PermissionErrorwhen underlying processes terminate unsuccessfully forLinuxReaderandLinuxWriter - Removed
busyboxandbruteforcecommands from documentation.
Patch fix release. Major fixes are the correction of file IO for LinuxWriters and improved stability with better exception handling.
- Pinned container base image to alpine 3.13.5 and installed to virtualenv (#134)
- Fixed syntax for f-strings in escalation command
- Re-added
readlineimport for windows platform after being accidentally removed - Corrected processing of password in connection string
- Changed session tracking so session IDs aren't reused
- Changed zsh prompt to match CWD of other shell prompts
- Improved exception handling throughout framework (#133)
- Added explicit permission checks when opening files
- Changed LinuxWriter close routine again to account for needed EOF signals (#140)
- Added better file io test cases
Quick patch release due to corrected bug in ChannelFile which caused command
output to be empty in some situations.
- Fixed
linux.enumerate.system.networkto work with old and new styleip. - Fixed
ChannelFile.recvintowhich will no longer raiseBlockingIOError(#126, #131) - Fixed sessions command with invalid session ID (#130)
- Fixed zsh shell prompt color syntax (#130)
- Added Pull Request template
- Added CONTRIBUTING.md
- Added
--versionoption to entrypoint to retrieve pwncat version - Added
latesttag to documented install command to prevent dev installs
- Differentiate prompt syntax for standard bash, zsh and sh (#126)
- Added
-c=nevertoipcommand inlinux.enumerate.system.network(#126) - Updated Dockerfile to properly build post-v0.4.0 releases (#125)
- Added check for
nologinshell to stop pwncat from accidentally closing the session (#116) - Resolved all flake8 errors (#123)
- Improved EOF handling for Linux file-writes (#117)