Added malleable profiles repo (#24)

* added malleable profile repo to empire * updated changelog * fixed preobfuscate
BC-SECURITY · Jan 14, 2021 · 738a3c7 · 738a3c7
1 parent 65a4141
commit 738a3c7
Show file tree

Hide file tree

Showing 14 changed files with 24 additions and 31 deletions.
diff --git a/.gitmodules b/.gitmodules
@@ -1,3 +1,7 @@
+[submodule "data/profiles"]
+	path = data/profiles
+	url = https://github.com/BC-SECURITY/Malleable-C2-Profiles
+
 [submodule "cli"]
 	path = cli
-	url = https://github.com/BC-SECURITY/Empire-Cli
+	url = https://github.com/BC-SECURITY/Empire-Cli
diff --git a/README.md b/README.md
@@ -61,7 +61,7 @@ To install and run:
 ```sh
 git clone --recursive https://github.com/BC-SECURITY/Empire.git
 cd Empire
-sudo ./install.sh
+sudo ./setup/install.sh
 sudo poetry install
 sudo poetry run python empire
 ```

diff --git a/changelog b/changelog
@@ -3,6 +3,7 @@
 - Version 3.7.0 Master Release
         - Revamped backend database from SQL to SQLAlchemy (@Cx01N, @Vinnybod)
         - Added new Empire CLI to packaging (@Vinnybod)
+        - Added malleable C2 profiles to empire directory: /data/profiles (@Cx01N)
         - Added --teamserver option to launcher (@Cx01N)
         - Added support for logging into Empire from multiple locations (@Vinnybod)
         - Added Invoke-WireTap (@Cx01N)

diff --git a/data/profiles b/data/profiles
diff --git a/data/profiles/comfoo.txt b/data/profiles/comfoo.txt
diff --git a/data/profiles/fiesta.txt b/data/profiles/fiesta.txt
diff --git a/data/profiles/pitty_tiger.txt b/data/profiles/pitty_tiger.txt
diff --git a/data/profiles/zeus.txt b/data/profiles/zeus.txt
diff --git a/lib/common/empire.py b/lib/common/empire.py
@@ -959,7 +959,7 @@ def do_preobfuscate(self, line):
 
         # Preobfuscate a selected module_source file
         else:
-            module_source_fullpath = self.installPath + 'data/module_source/' + module
+            module_source_fullpath = self.installPath + '/data/module_source/' + module
             if not os.path.isfile(module_source_fullpath):
                 print(helpers.color("[!] The module_source file:" + module_source_fullpath + " does not exist."))
                 return
@@ -978,9 +978,9 @@ def do_preobfuscate(self, line):
             if obfuscate_all:
                 files = [file for file in helpers.get_module_source_files()]
             else:
-                files = ['data/module_source/' + module]
+                files = ['/data/module_source/' + module]
             for file in files:
-                file = self.installPath + file
+                file = self.installPath + '/' + file
                 if reobfuscate or not helpers.is_obfuscated(file):
                     message = "[*] Obfuscating {}...".format(os.path.basename(file))
                     signal = json.dumps({
@@ -1216,7 +1216,7 @@ def complete_list(self, text, line, begidx, endidx):
 
     def complete_preobfuscate(self, text, line, begidx, endidx):
         "Tab-complete an interact command"
-        options = [(option[len('data/module_source/'):]) for option in helpers.get_module_source_files()]
+        options = [(option[len('/data/module_source/'):]) for option in helpers.get_module_source_files()]
         options.append('all')
 
         mline = line.partition(' ')[2]

diff --git a/lib/common/helpers.py b/lib/common/helpers.py
@@ -905,8 +905,8 @@ def obfuscate(installPath, psScript, obfuscationCommand):
         print(color("[!] PowerShell is not installed and is required to use obfuscation, please install it first."))
         return ""
     # When obfuscating large scripts, command line length is too long. Need to save to temp file
-    toObfuscateFilename = installPath + "data/misc/ToObfuscate.ps1"
-    obfuscatedFilename = installPath + "data/misc/Obfuscated.ps1"
+    toObfuscateFilename = installPath + "/data/misc/ToObfuscate.ps1"
+    obfuscatedFilename = installPath + "/data/misc/Obfuscated.ps1"
     toObfuscateFile = open(toObfuscateFilename, 'w')
     toObfuscateFile.write(psScript)
     toObfuscateFile.close()

diff --git a/lib/database/base.py b/lib/database/base.py
@@ -27,7 +27,7 @@
     choice = input("\n [>] Would you like to reset your Empire instance? [y/N]: ")
     if choice.lower() == "y":
         Base.metadata.drop_all(engine)
-        subprocess.call("./reset.sh")
+        subprocess.call("./setup/reset.sh")
     else:
         pass
 

diff --git a/install.sh → setup/install.sh b/install.sh → setup/install.sh
@@ -175,9 +175,9 @@ sudo pip3 install -r "$Pip_file"
 # Generate a cert
 ./cert.sh
 
-cd ..
-
 # Set up the database schema
 python3 ./setup_database.py
 
+cd ..
+
 echo -e '\n [*] Setup complete!\n'
diff --git a/reset.sh → setup/reset.sh b/reset.sh → setup/reset.sh
@@ -7,6 +7,13 @@ fi
 
 IFS='/' read -a array <<< pwd
 
+if [[ "$(pwd)" != *setup ]]
+then
+	cd ./setup
+fi
+
+cd ..
+
 # remove the debug file if it exists
 if [ -e empire.debug ]
 then

diff --git a/setup_database.py → setup/setup_database.py b/setup_database.py → setup/setup_database.py