Skip to content

Commit

Permalink
progress on 'generate' command
Browse files Browse the repository at this point in the history
  • Loading branch information
@spenceradolph
spenceradolph committed Apr 17, 2024
1 parent b4c193c commit 7584285
Show file tree
Hide file tree
Showing 5 changed files with 141 additions and 33 deletions.
7 changes: 3 additions & 4 deletions Payload_Type/sliverapi/sliverapi/SliverRequests/SliverAPI.py
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
from tabulate import tabulate
from mythic_container.MythicCommandBase import *
from mythic_container.MythicRPC import SendMythicRPCFileGetContent, MythicRPCFileGetContentMessage
from sliver import SliverClientConfig, SliverClient
from sliver import SliverClientConfig, SliverClient, client_pb2
from mythic_container.MythicCommandBase import *
from mythic_container.MythicRPC import *
from mythic_container.PayloadBuilder import *
Expand Down Expand Up @@ -115,7 +115,6 @@ async def version(taskData: PTTaskMessageAllData):

return f"{version_results}"


async def jobs_kill(taskData: PTTaskMessageAllData, job_id: int):
client = await create_sliver_client(taskData)
kill_response = await client.kill_job(job_id=job_id)
Expand Down Expand Up @@ -186,14 +185,14 @@ async def use(taskData: PTTaskMessageAllData, sliver_id: int):
payload_type="sliverimplant",
uuid=sliver_id,
selected_os=sliver_os_table[implant_info.OS],
description=f"sliver {'beaconing' if isBeacon else 'interactive'} implant for {sliver_id}",
description=f"(no download) using sliver {'beaconing' if isBeacon else 'interactive'} implant for {sliver_id}",
build_parameters=[],
c2_profiles=[],
# TODO: figure out if possible to not specify these manually
commands=['ifconfig', 'download', 'upload', 'ls', 'ps', 'ping', 'whoami', 'screenshot', 'netstat', 'getgid', 'getuid', 'getpid', 'cat', 'cd', 'pwd', 'info', 'execute', 'mkdir', 'shell', 'terminate', 'rm']
),
)
await SendMythicRPCPayloadCreateFromScratch(new_payload)
scratchBuild = await SendMythicRPCPayloadCreateFromScratch(new_payload)

# create the callback
extra_info = json.dumps({
Expand Down
1 change: 1 addition & 0 deletions Payload_Type/sliverapi/sliverapi/agent_functions/builder.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,6 +40,7 @@ async def build(self) -> BuildResponse:
Host="SliverAPI",
Ip=ip,
IntegrityLevel=3,
ExtraInfo=self.uuid,
))
if not create_callback.Success:
logger.info(create_callback.Error)
Expand Down
97 changes: 97 additions & 0 deletions Payload_Type/sliverapi/sliverapi/agent_functions/generate.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,97 @@
from ..SliverRequests import SliverAPI

from mythic_container.MythicCommandBase import *
from mythic_container.PayloadBuilder import *
from mythic_container.MythicRPC import MythicRPCPayloadCreateFromScratchMessage, MythicCommandBase, SendMythicRPCPayloadCreateFromScratch, SendMythicRPCResponseCreate, MythicRPCResponseCreateMessage

from mythic_container.MythicGoRPC.send_mythic_rpc_payload_create_from_scratch import MythicRPCPayloadConfiguration

class GenerateArguments(TaskArguments):
def __init__(self, command_line, **kwargs):
super().__init__(command_line, **kwargs)
self.args = [
CommandParameter(
name="os",
cli_name="os",
display_name="os",
description="operating system",
default_value='windows',
type=ParameterType.ChooseOne,
choices=["linux", "windows"]
),
CommandParameter(
name="mtls",
cli_name="mtls",
display_name="mtls",
description="mtls ip:port to use",
type=ParameterType.String,
),
]

async def parse_arguments(self):
self.load_args_from_json_string(self.command_line)


class Generate(CommandBase):
cmd = "generate"
needs_admin = False
help_cmd = "generate"
description = "Generate a new sliver binary"
version = 1
author = "Spencer Adolph"
argument_class = GenerateArguments
attackmapping = []

async def create_go_tasking(self, taskData: MythicCommandBase.PTTaskMessageAllData) -> MythicCommandBase.PTTaskCreateTaskingMessageResponse:
# TODO: paste all the config options here

os = taskData.args.get_arg('os')
mtls = taskData.args.get_arg('mtls')

sliverconfig_file_uuid = taskData.BuildParameters[0].Value

sliver_os_table = {
'linux': 'Linux'
}

createMessage = MythicRPCPayloadCreateFromScratchMessage(
TaskID=taskData.Task.ID,
PayloadConfiguration=MythicRPCPayloadConfiguration(
PayloadType="sliverimplant",
SelectedOS=sliver_os_table[os],
Description="generated payload: sliver implant",
BuildParameters=[
MythicRPCPayloadConfigurationBuildParameter(
name='sliverconfig_file_uuid',
value=sliverconfig_file_uuid
),
MythicRPCPayloadConfigurationBuildParameter(
name='os',
value=os
),
MythicRPCPayloadConfigurationBuildParameter(
name='mtls',
value=mtls
),
],
C2Profiles=[],
Commands=['ifconfig', 'download', 'upload', 'ls', 'ps', 'ping', 'whoami', 'screenshot', 'netstat', 'getgid', 'getuid', 'getpid', 'cat', 'cd', 'pwd', 'info', 'execute', 'mkdir', 'shell', 'terminate', 'rm']
),
)
await SendMythicRPCPayloadCreateFromScratch(createMessage)

await SendMythicRPCResponseCreate(MythicRPCResponseCreateMessage(
TaskID=taskData.Task.ID,
Response="generated implant".encode("UTF8"),
))

taskResponse = MythicCommandBase.PTTaskCreateTaskingMessageResponse(
TaskID=taskData.Task.ID,
Success=True,
Completed=True
)
return taskResponse

async def process_response(self, task: PTTaskMessageAllData, response: any) -> PTTaskProcessResponseMessageResponse:
resp = PTTaskProcessResponseMessageResponse(TaskID=task.Task.ID, Success=True)
return resp
63 changes: 37 additions & 26 deletions Payload_Type/sliverimplant/sliverimplant/agent_functions/builder.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
from mythic_container.PayloadBuilder import *
from mythic_container.MythicCommandBase import *
from mythic_container.MythicRPC import *
from sliver import SliverClientConfig, SliverClient
from sliver import SliverClientConfig, SliverClient, client_pb2


class SliverImplant(PayloadType):
Expand All @@ -24,38 +24,49 @@ class SliverImplant(PayloadType):
build_steps = []
build_parameters = [
BuildParameter(
name="name",
description="name",
name="sliverconfig_file_uuid",
description="sliverconfig_file_uuid",
parameter_type=BuildParameterType.String,
),
BuildParameter(
name="os",
description="os",
parameter_type=BuildParameterType.String,
),
BuildParameter(
name="mtls",
description="mtls",
parameter_type=BuildParameterType.String,
),
]

async def build(self) -> BuildResponse:
# Just hope they have this setup already, and not have multiple
# sliverapi_payloads = await SendMythicRPCPayloadSearch(MythicRPCPayloadSearchMessage(
# PayloadTypes=['sliverapi'],
# ))
# sliver_config_uuid = sliverapi_payloads.Payloads[0].BuildParameters[0].Value
# filecontent = await SendMythicRPCFileGetContent(MythicRPCFileGetContentMessage(
# AgentFileId=sliver_config_uuid
# ))
# config = SliverClientConfig.parse_config(filecontent.Content)
# client = SliverClient(config)
# await client.connect()
os = self.get_parameter('os')
mtls = self.get_parameter('mtls')
sliverconfig_file_uuid = self.get_parameter('sliverconfig_file_uuid')

# self.build_parameters
if (os == ''):
return BuildResponse(status=BuildStatus.Success)

filecontent = await SendMythicRPCFileGetContent(MythicRPCFileGetContentMessage(
AgentFileId=sliverconfig_file_uuid
))
config = SliverClientConfig.parse_config(filecontent.Content)
client = SliverClient(config)
await client.connect()

# implant_config = client_pb2.ImplantConfig(
# IsBeacon=self.build_parameters[''],
# Name="sliver-pytest-1",
# GOARCH="amd64",
# GOOS="linux",
# Format=client_pb2.OutputFormat.EXECUTABLE,
# ObfuscateSymbols=False,
# C2=[client_pb2.ImplantC2(Priority=0, URL="http://localhost:80")],
# )
implant_config = client_pb2.ImplantConfig(
IsBeacon=False,
Name=f"{self.uuid}",
GOARCH="amd64",
GOOS=os,
Format=client_pb2.OutputFormat.EXECUTABLE,
ObfuscateSymbols=False,
C2=[client_pb2.ImplantC2(Priority=0, URL=f"mtls://{mtls}")],
)

# implant = await client.generate_implant(implant_config)
implant = await client.generate_implant(implant_config)
implant_bytes = implant.File.Data

resp = BuildResponse(status=BuildStatus.Success)
resp = BuildResponse(status=BuildStatus.Success, payload=implant_bytes)
return resp
6 changes: 3 additions & 3 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@ sudo ./mythic-cli install github https://github.com/MythicAgents/sliver
- Interactive Tasking (shell) 🚧🐞 (buggy)
- Beacon checkin status
- Documentation-payload
- Build implants through Mythic ('generate' + UI)
- Build implants through Mythic ('generate' + UI)
- Sliver 3rd party integrations
- Stretch Goal: Ability to run the sliver server within mythic
- Stretch Goal: V2 everything in go💙 (match sliver official client code)
Expand All @@ -67,7 +67,7 @@ sudo ./mythic-cli install github https://github.com/MythicAgents/sliver
- cursed
- dns
- env
- generate
- generate
- hosts
- http
- https
Expand All @@ -86,7 +86,7 @@ sudo ./mythic-cli install github https://github.com/MythicAgents/sliver
- tasks
- update
- use✅
- version
- version
- websites
- wg
- operators
Expand Down

0 comments on commit 7584285

Please sign in to comment.