• Stars
    star
    962
  • Rank 47,540 (Top 1.0 %)
  • Language
    Go
  • License
    MIT License
  • Created almost 5 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Linux/Windows post-exploitation framework made by linux user

emp3r0r

A post-exploitation framework for Linux/Windows

Status

  • emp3r0r C2 (Linux/Windows) is ready for testing. Please report bugs if you find any.
  • Read wiki to get started
  • Download from here
  • Write modules for emp3r0r with your favorite languages
  • SSH harvester is ready for use
  • Windows support is ready with fully-interactive shell
ssh-harvester.mp4
MORE screenshots

image

image

image

c2


Motivation

Initially, emp3r0r was developed as one of my weaponizing experiments. It was a learning process for me trying to implement common Linux adversary techniques and some of my original ideas.

So, what makes emp3r0r different? First of all, it is the first C2 framework that targets Linux platform including the capability of using any other tools through it. Take a look at the features for more valid reasons to use it.

To support third-party modules, emp3r0r has complete python3 support, included in vaccine module, 15MB in total, with necessary third party packages such as Impacket, Requests and MySQL.


Features

  • Beautiful Terminal UI
    • Use tmux for window management
  • Stealth
    • Automatically changes argv so you won't notice it in ps listing
    • Hide files and PIDs via Glibc hijacking (patcher in get_persistence)
    • Built-in Elvish Shell with the same disguise as main process
    • All C2 communications made in HTTP2/TLS
    • Defeat JA3 fingerprinting with UTLS
    • Painlessly encapsulated in Shadowsocks and KCP
    • Able to encapsulate in any external proxies such as TOR and CDNs
  • Multi-Tasking
    • Don't have to wait for any commands to finish
  • Module Support
  • Perfect Shell Experience via SSH with PTY support
    • Compatible with any SSH client and available for Windows
  • Bettercap
  • Auto persistence via various methods
  • Post-exploitation Tools
    • Nmap, Socat, Ncat, Bettercap, etc
  • Credential Harvesting
  • Process Injection
  • Shellcode Injection
  • ELF Patcher (WIP)
  • Packer
    • Encrypts and compresses agent binary and runs agent in a covert way
  • Hide processes and files (WIP)
  • Networking
    • Port Mapping
      • From C2 side to agent side, and vice versa
      • TCP/UDP both supported
    • Agent Side Socks5 Proxy with UDP support
  • Auto Root
  • LPE Suggest
  • System Info Collect
  • File Management
  • Log Cleaner
  • Screenshot
  • Anti-Antivirus
  • Internet Access Checker
  • Automatically bridge agents from internal networks to C2
    • For semi-isolated networks
  • Proxy via agent to agent SSH connection
    • To bring any targets you can reach to C2
  • Interoperability with Metasploit/Cobalt Strike
  • and many more :)

More Repositories

1

kms-activate

Microsoft Windows/Office 一键激活工具
C#
715
star
2

mec

for mass exploiting
Python
568
star
3

go-cdn2proxy

proxy your C2 traffic through CDN using websocket
Go
47
star
4

go-lpe

A collection of weaponized LPE exploits written in Go
Go
37
star
5

mec-ng

pentest toolbox
Go
29
star
6

wx2tg_bot

manage your wechat with telegram bot
Python
24
star
7

CVE-2018-7750

an RCE (remote command execution) approach of CVE-2018-7750
Python
20
star
8

xmir

masscan result parsing, web server fingerprinting
Go
18
star
9

win10-mouse-natural-scroll

Enable natural scrolling feature for a USB mouse under Windows 10/11
PowerShell
17
star
10

CVE-2021-3156

sudo heap overflow to LPE, in Go
Go
17
star
11

img2location

find where an image is taken
Python
16
star
12

jimbot-go

A Telegram bot created for my gf, written in Go
Go
11
star
13

ss-tun

L3 proxy backed by Shadowsocks
Shell
8
star
14

static-bins

statically linked post-exploitation tools for linux
Shell
8
star
15

vim_dotfiles

my vim config files
Vim Script
6
star
16

switchyomega-china-list

Imported from felixonmars/dnsmasq-china-list for use with SwitcyOmega
Shell
5
star
17

rog-anime-toggle

Switch on/off LED Matrix anime for Asus ROG G14/15 Laptops
Go
4
star
18

txt2csv

convert large txt to csv
Go
4
star
19

SSH-Harvester

Harvest passwords automatically from OpenSSH server
C
3
star
20

autoconfig

Install software for daily use, retrieve config files from Github and autimatically put them where they belong
Vim Script
3
star
21

i3wm-config

My configuration files of i3wm
Shell
1
star
22

max30105_demo

demo dotnet app for max30105
C++
1
star
23

jm33-m0

me
1
star