Skip to content

Empire v4.0.1
Compare
Choose a tag to compare
@vinnybod vinnybod released this 27 Jul 04:03
v4.0.1
886e513
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

7/19/2021

  • Version 4.0.1 Master Release
    • Added API endpoints for sleep/jitter to agents (@Cx01N)
    • Added sleep command to CLI (@Cx01N)
    • Added sleep/jitter option to C# agents (@Hubbl3)
    • Fix for Invoke-Obfuscation installation
    • Added PrintNightmare module (@Cx01N)

6/28/2021

  • Version 4.0.0 Master Release
    • Breaking Changes
      • Removed old Empire CLI and cmdloop from server (@Cx01N)
      • The credential create endpoint now accepts a single credential instead of a list
      • Some endpoints which were previously throwing 500s when not found, now properly return a 404
      • Plugin endpoints and socketio channels renamed to plural (plugin -> plugins) to match naming convention of other resources (@vinnybod)
    • New Features
      • Integrated server and client into Empire (@Cx01N, @vinnybod)
      • Introduced C# agents (@Hubbl3)
      • Integrated Covenant Roslyn compiler for task compilation (@Hubbl3)
      • Covenant Task compatibility (@Hubbl3, @vinnybod)
      • Added support for 'suggested values' on the server and auto completing the suggested values in the CLI (@vinnybod)
      • Added new launch parameters for starting server/client (@Cx01N, @vinnybod)
      • Added Offensive DLR Modules: IronPython, ClearScript, & Boolang (@Cx01N)
      • Added MS16-051 stager (@Cx01N)
      • Added Start-ProcessAsUser module (@Cx01N)
      • Added NTLM-Extract module (@Cx01N)
      • Added Invoke-SharpSecDump module (@Cx01N)
      • Added sriptimport and scriptcommand to API (@Cx01N)
      • Added auto generate certificate function to startup script (@Cx01N)
      • Added Invoke-SpoolSample (@Cx01N)
      • Added redirector chaining and proper tunneling (@Cx01N)
      • Updated pycrypto to pycryptodome (@Cx01N)
      • Updated PowerDump with AES NTLM hashes (@Cx01N)
      • Updated cert/install/reset script with new directories (@Cx01N)
      • Updated all modules to new YAML format (@vinnybod, @Cx01N)
      • Updated to Mimikatz 2.2.0 20210531 X11 RDP Clients (@Cx01N)
      • Removed M2Crypto dependency (@Cx01N)
      • Simplified kill/remove commands and added 'all' and 'stale' options (@Cx01N)
      • Removed the need for manual database timestamp updates, merge taskings and results table to a single table (@vinnybod)
      • Added a socketio event for when tasking results come back (@vinnybod)
      • Readded rastamouse's bypass (@Cx01N)
      • Added a 'since' query parameter to the tasks endpoint for more efficient querying (@vinnybod)
      • Added socketio tasking event handler to CLI for displaying task results in the interact menu (@vinnybod)
      • Install script prompts for xar, bomutils, openjdk, and dotnet for a more streamlined install (@vinnybod)
      • Install script now includes dotnet (@vinnybod)
      • Dockerfile size decreased by ~1GB by only installing the essentials. There is a note in the README (@vinnybod)
      • Made powershell bypasses dynamic. Now set with a single field Bypasses and they will be applied in the order provided (@vinnybod)
      • Added API endpoints for managing bypasses (@vinnybod)
      • Add processor architecture to powershell, csharp, and python agents (@vinnybod)
      • Add a display command to interact menu (@vinnybod)
      • Add additional endpoints for credential for get, update, and delete (@vinnybod)
      • Add create, update, remove credential functionality to the CLI (@Cx01N)
      • Add an "output function" option on several modules (@jamarir)
      • Updated shellcoderdi to newest version (@Cx01N)
      • Added a Nim launcher (@Hubbl3)
Assets 2
Loading