Skip to content

Releases: BC-SECURITY/Empire

v5.12.0

14 Dec 19:42
5aeb633
Compare
Choose a tag to compare

[5.12.0] - 2024-12-14

  • Reduce the check-in tests that were adding an unncessary amount of time to the CI
  • Allow Python 3.13 to be used
  • Fix python install
  • Support Empire for system-wide deployment (@D3vil0p3r)
  • Paths specified in config.yaml where user does not have write permission will be fallback to ~/.empire directory and config.yaml updated as well (@D3vil0p3r)
  • Invoke-Obfuscation is no longer copied to /usr/local/share

v5.11.7

11 Nov 21:35
8f41087
Compare
Choose a tag to compare

[5.11.7] - 2024-11-11

  • Fix arm installs by installing dotnet and powershell manually
  • Fix issue initializing some databases by removing the unused Reporting table

v5.11.6

08 Nov 01:01
1ff9de8
Compare
Choose a tag to compare

[5.11.6] - 2024-11-08

  • Fixed extra character in nanodump.x64.o
  • Fixed bof tasking for IronPython agent

v5.11.5

22 Sep 20:27
ee6526b
Compare
Choose a tag to compare

[5.11.5] - 2024-09-22

  • Updated Starkiller to v2.8.2
  • Fixed various Python 3.12 SyntaxWarning

v5.11.4

04 Sep 04:36
21880d8
Compare
Choose a tag to compare

[5.11.4] - 2024-09-04

Added

  • Added nameserver check for linux hosts (@0x636f646f)

[5.11.3] - 2024-09-04

Changed

  • Updated Rubeus to v2.3.2 (@Cx01N)

Fixed

  • Fixed Rubeus error where only first arg was being used (@Cx01N)
  • Fixed background jobs checking in continuously (@Cx01N)
  • Fixed Rubeus killing agent when certain options were given that use System.Environment.Exit (@Cx01N)
  • Fixed option parsing error in credential/tokens module (@Cx01N)
  • Removed requirement for credid for mimikatz/pth (@Cx01N)

v5.11.2

08 Aug 19:16
edab367
Compare
Choose a tag to compare

[5.11.2] - 2024-08-08

  • Added Route4Me to sponsor page on Empire (@Cx01N)
  • Fixed global obfuscation bug in listener staging (@Cx01N)

[5.11.1] - 2024-07-23

Changed

  • Updated Ruff to 0.5.3 and added additional Ruff rules (@vinnybod)

Fixed

  • Removed duplicate code for ironpython agent for loading path resetting (@Cx01N)
  • Fixed issue of Sharpire taskings not getting assigned correct id (@Cx01N)

[5.11.0] - 2024-07-14

Added

  • Added threaded jobs for powershell tasks using Appdomains (@Cx01N)
  • Added job tracking for all tasks in Sharpire (@Cx01N)
  • Updated agents to track all tasks and removed only tracking jobs (@Cx01N)
  • Added Invoke-BSOD modules (@Cx01N)
  • Added ticketdumper ironpython module (@Hubbl3)
  • Added ThreadlessInject module (@Cx01N)

Fixed

  • Fixed issue in python agents where background jobs were failed due to a missing character (@Cx01N)
  • Fixed task bundling for the c# server plugin (@Cx01N)
  • Fixed missing New-GPOImmediateTask in powerview (@Cx01N)
  • Fixed NET45 missing folder causing a compilation error (@Cx01N)
  • Fixed NET45 files not being removed on server reset (@Cx01N)

Changed

  • Converted C# server plugin to use plugin taskings (@Cx01N)
  • Upgraded Ruff to 0.5.0 and Black to 24.4.2 (@vinnybod)
  • Added pylint-convention (PLC), pylint-error (PLE), pylint-warning (PLW), and pylint-refactor (PLR) to ruff config (@vinnybod)

v5.10.3

23 May 03:41
8283bbc
Compare
Choose a tag to compare

[5.10.3] - 2024-05-23

Changed

  • Updated the default value for Sharpup to audit (@Cx01N)
  • Updated the default value for Seatbelt to AntiVirus (@Cx01N)
  • Updated the default value for SharpWMI to action=query (@Cx01N)
  • Updated the default value for SharpSC to action=query service= (@Cx01N)
  • Updated GetSystem to require admin (@Cx01N)
  • Updated the default value for Moriarty to --debug (@Cx01N)

Fixed

  • Fixed issue with generate_agent having a mismatched function name for stageless (@Cx01N)
  • Fixed parsing issue for C# portscan with commas (@Cx01N)
  • Fixed error for PrivExchange with missing System.XML.dll (@Cx01N)

Removed

  • Removed BypassUACGrunt due to compatibility with only Covenant (@Cx01N)
  • Removed BypassUACCommand due to compatibility with only Covenant (@Cx01N)

v5.10.2

05 May 18:54
f1970a7
Compare
Choose a tag to compare

[5.10.2] - 2024-05-05

  • Updated Starkiller to v2.8.1

v5.10.1

03 May 01:55
e6d1cbd
Compare
Choose a tag to compare

[5.10.1] - 2024-04-26

  • Updated Starkiller to v2.8.0

Added

  • Added removal of starkiller directory to server reset (@Cx01N)

Fixed

  • Fixed missing .NET 4.5 DLLs (@Cx01N)
  • Fixed run_as_user issue when dealing with directories (@Cx01N)
  • Fixed missing clr package for IronPython standard library (@Cx01N)

[5.10.0] - 2024-04-08

Added

  • Added dependabot for github actions dependencies (@vinnybod)
  • Added install option to ./ps-empire file (@Cx01N)
  • Added auto pull options for submodules on startup (@Cx01N)
  • Added hook and socket message to receive callback messages for individual agents (@AaronVigal)
  • Added sacrificial Spawn Process bof (@Cx01N)
  • Added suggested values to most modules (@Cx01N)
  • Added continuous, error, and completed tasking statuses (@Cx01N)
  • Added continuous and error plugin statuses (@Cx01N)
  • Added Moriary module (@Cx01N)
  • Added .NET 4.5 compile option (@Cx01N)

Changed

  • Updated all dependencies (@vinnybod)
  • Updated Dockerfile and install script to Python 3.12.2 (@vinnybod)
  • Updated starkiller snyc to no longer require root (@Cx01N)
  • Change file permissions for empire and listener logs to be non-root (@Cx01N)

Fixed

  • Fixed issue loading openapi.json (@vinnybod)
  • Fixed issue when False is given for options and option is appended with 'False' (@Cx01N)
  • Fixed module generation error in ComputerDetails (@Cx01N)

v5.9.5

22 Feb 06:44
dc5840e
Compare
Choose a tag to compare

[5.9.5] - 2024-02-22

  • Updated Starkiller to v2.7.3