Oleksii Shevchuk
|
94492a338e
|
Honor prefer_workdir for credentials
|
2017-03-09 19:00:29 +02:00 |
Oleksii Shevchuk
|
3297c1188d
|
Move pupysh related requirements.txt to pupy folder
|
2017-03-09 16:11:27 +02:00 |
Oleksii Shevchuk
|
a8ea7a4824
|
Rework scanner to scan by constant sized chunks
|
2017-03-09 10:50:45 +02:00 |
Oleksii Shevchuk
|
04937b3b74
|
Create continious stream for scanning
|
2017-03-09 09:38:11 +02:00 |
Oleksii Shevchuk
|
47acc1e763
|
Rework credentials decryptor initialization
|
2017-03-09 09:12:52 +02:00 |
Oleksii Shevchuk
|
78c9f89f21
|
Encrypt credentials by default
|
2017-03-09 00:15:29 +02:00 |
Oleksii Shevchuk
|
a1ca6f1f34
|
Fix port_scan on windows
|
2017-03-08 21:14:16 +02:00 |
Oleksii Shevchuk
|
b9cc1dcdca
|
Add on_checkconnect stub without impl
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
a41bc90c46
|
Close socket on strange errors and that's it
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
09b8ca0ac6
|
Fix various migration related issues
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
65fdef62c5
|
Pass first 3072 bytes from RC4 stream, as CIA suggests to us
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
722369239c
|
Handle case when pupy starts from memfd
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
640526c91e
|
Fix config generation for bypassuac
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
35cd39fe5b
|
Unicodedata is not required to start pupy, so remove it
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
99b202af59
|
Fix memexec/interactive
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
a66ff19f48
|
Add initial memexec support for linux (interactive mode doesn't work for now)
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
1a0f0fefd7
|
Fix id manipulation during migration
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
72f6a314c2
|
Fix payload generation in other dependencies
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
7f9ea8c576
|
Fix arch setting
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
4f1a508dd0
|
Fix migration (linux client) /w memfd
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
248094d89d
|
Ensure pupy doesn't execute any shit from the system
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
29d7e1ad5b
|
Properly set sys.executable from /proc/self/exe
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
ce50ea3230
|
Add workaround to make possible to close memfds after dlopen
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
fec8025de7
|
Add memfd sealing
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
f1bc5450c6
|
Request maximal amount of open files (because of memfd) and disable coredumps
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
f09fa56587
|
Unfortunately we still need to embedd key, even it's never used
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
41932c6362
|
Fix hosts ranges scan
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
08fc22a932
|
select based trivial port scanner
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
b089e69ac5
|
Add lightweight ECPV+RC4 TCP encryption transport
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
bc62899b4f
|
Prevent GC collection of modules and config
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
177fab2498
|
Reduce virtual size
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
546d9fcda1
|
Cover more cases with forward string parsing
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
a8a6548091
|
Bump winpty version
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
4a02048666
|
Build pupymemexec and winpty with environment
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
8c4688becf
|
Add new DNSCNC commands - dexec, sleep, reexec
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
fc585d60a6
|
Values are hardcoded
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
c005cf86de
|
Fix invoking from non-shell
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
1e01b0ad0a
|
Try as much as possible to read process status
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
45ac2bf02e
|
"Securely" pass environment
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
31f0b1ec18
|
Add initial support for automatic remote imports
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
a9551dfd13
|
Fix problem with title
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
53f6bb18ea
|
global SIGCHLD handler break things, so let's just reap zombies on disconnect right now
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
fc7d0253ec
|
Reduce size by building shared openssl, removing dbus from client and so on
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
e6b227f36c
|
Fix typo
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
416d7f47eb
|
Prevent zobmie creation
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
1a02ac6150
|
Try to become root if possible
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
7309acdf19
|
Set non-dumpable property
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
5f599922f8
|
Add Reexec command, fix Sleep
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
6f076a6cc7
|
Add memfd support to python based pupyimporter/memimporter
|
2017-03-08 19:41:15 +02:00 |
Oleksii Shevchuk
|
86b1c20484
|
Fix build/work in lin32 environment
|
2017-03-08 19:41:15 +02:00 |