chore(master): release 1.38.0

[github-actions]

🤖 I have created a release beep boop

1.38.0 (2024-10-21)

Features

• add ssh_harvester (6a557e1)
• add elvsh as default shell (12eba72)
• autocomplete items in PATH on target system (a1a6268)
• C2 relay via SSH (522b6b3)
• deprecate gen_agent cmd in favor of use gen_agent module (add0a7e)
• ditch static magic string for packer (f7edcc6)
• enable tabbed UI, move agentlist to tab (7417076)
• fixed #160, file server rewritten, allow only connected agents to download files from CC (cafeb9d)
• hide PIDs and files using loader.so (c54c5f5)
• implement basic stager (linux/bash) (9f4f9ba)
• improve agent binary structure (fd76e5c)
• inject arbitrary shared lib (f4a0c1c)
• module help for gen_agent (ea3cfe7)
• multi-arch support (40bc0fe)
• pack agent binary by default (linux) (4811229)
• reduce size of vaccine (c560dbb)
• remove shell pane (86851d2)
• revamp lpe_helper (94d3601)
• sftp support (9b84eb9)
• support DLL agent stub (amd64 only) (eda0e94)
• switch to utls to defeat JA3 fingerprinting (b9bf54f)
• UDP port mapping (c2b6b32)
• upgrade tmux config (d5fc0d0)
• use AES-CBC mode to support tiny-AES (72c4cea)

Bug Fixes

• #152: drop extension name for Linux agent binary (79dfba2)
• #192 (18e2a9b)
• #196 (1ec35ca)
• #199 (7591681)
• #201, use winpty to support ConPTY shell on all Windows versions (dfc54c0)
• #203 (972664a)
• #210 (f926d83)
• #219 (f0b414a)
• #236 (84e1fda)
• #244 (50a0221)
• #246 (da2bfd1)
• #248 (e89155d)
• #250 (c01340d)
• #250 (99b2fb0)
• #253 (2ebb6f4)
• #264 add option to disable timeout in proxy altogether (e8b31e5)
• #264 disable timeout and leave cleanup job to the OS (d3cea97)
• #264 increase timeout to 2 minutes (cc7034d)
• #292 DLL agent (dddd442)
• #318 (ac2a682)
• #5 fork not supported on arm64 (d962876)
• /bin/bash doesnt exist on some systems (794887f)
• __libc_dlopen_mode not found (322d071)
• -connect_relay unable to recovery SSH session (8bde2fb)
• -gencert refuses to work when emp3r0r.json not found (f100936)
• bring2cc fails to connect configure SOCKS5 proxy (d11c8f0)
• bring2cc should start SOCKS5 server automatically (48b7311)
• elvsh shell cant start due to missing agent binary (c090e08)
• elvsh shell for windows (e4d97d8)
• FileBaseName needs to strip / (4eca34b)
• gen_agent should abort when OS choice is invalid (a8c2142)
• get_persistence causes unalias error (43dc8ee)
• get_persistence result readability issue (438289f)
• get_persistence: fix profiles method (7a1858e)
• go-console fails to start winpty (e7e2939)
• grab creates on-disk file even if no path is specified (dfbf640)
• inject_loader fails to launch agent (77c445b)
• interactive_shell cmd env (fc386ab)
• interactive_shell fails to execute due to empty argv (5b7e397)
• IsAgentAlive stuck (2792bf3)
• label by tag not working (131d84e)
• linux/bash stager serving: incorrect path (0f1b33f)
• lpe_linpeas unable to run (a32187f)
• lpe_winpeas for Windows LPE (a79f8a2)
• passProxy proxy URL parsing error (957395e)
• PATH env should contain sbin paths (4036968)
• profiles persistence method (6321b3c)
• run_as_daemon should always be enabled (11a3979)
• split-window -l needs % to specify percentage (266f195)
• split-window -p <size> has been deprecated in tmux newer versions (d625d87)
• use command should show more info about the selected module (e04dc5b)
• VERBOSE=true not working (b7894c4)
• 1. option to disable NCSI check 2. upgrade deps (5a14b7a)
• 254 (a9f3674)
• add libexpat.so.1 as python needs it (76a9acf)
• add help to get_persistence (a5a9879)
• add instructions (c051806)
• add option to uninstall (e1a4e0d)
• AES encryption: use GCM for authentication (e713898)
• agent aborts connection (Windows) (8c73193)
• agent aborts connection when C2 is unreachable (def1b2a)
• agent authentication (a2386e2)
• agent fails to connect on first try (1675de9)
• agent side SOCKS5 server lacks authentication (67cba96)
• agent system info pane not being updated (5e9a8ab)
• agent wait queue (f4e45f7)
• agent won't run when packed by upx (4d35ef9)
• argv spoofing only works with long argv0 (0f322bf)
• auto proxy broken (7b04571)
• auto-complete gen_agent module options (71e7d79)
• auto-modify cmdline args (linux) (b4ca3a3)
• auto-resize console buffer on elvsh start, to match C2 terminal size (71167e4)
• auto-updating hide_pid list (7a2d822)
• bash stager unable to execute agent (f406100)
• be silent when started by loader.so (4113d3d)
• BlackArch PKGBUILD (5cc5d1f)
• broken shell pane for windows targets (3cbd03a)
• build issue (67eb322)
• build: switch to zstd (d7e1eeb)
• C2 relay client (7e121d6)
• C2 relay: C2 service not running (4a26931)
• c2 server no longer needs to be manually restarted when new c2 name is added (8d9a81b)
• CC unable to detect existing instance (15e2940)
• change process name affects loader.so (83c1109)
• check if an ELF is static (d574330)
• cleanup queue when there are too many waiting (3933766)
• cleanup work for stager, python2, obfuscate agent binary (e91f583)
• command time msg should exclude built-in cmds (e6a5d2d)
• concurrent map access in handshake thread (1adbb47)
• confusing tmux error messages (1edb75b)
• confusion on reverse_proxy feature, see #190 (b6425f0)
• connectivity check should connect to C2 using uTLS (8b746c5)
• daemonizing issues (argv modification fails) (d005862)
• damonize and be silent when started by persistence script (e14f3eb)
• delete orphaned functions (7b744c1)
• deprecate MS NCSI as it doesn't support HTTPS (62f2115)
• disable agent logging by default (687230c)
• disable console resizing for windows due to bugs (19e7a88)
• disable sysinfo warnings (e7e07a2)
• do not attemp to hide without root (b69f6b1)
• do not delay when started by loader.so (ca596e9)
• do not overwrite backup (ef0b058)
• do not prompt for indicator text when it's disabled (f6e8c62)
• don't install to all locations at once (87f1ebb)
• DownloadViaCC has racing issue (0d96ca8)
• dynamic prompt string not available after CliAsk or CliYesNo (85e6eba)
• elf loader unable to run emp3r0r (d534359)
• elvsh not working in ssh (18773eb)
• elvsh should reuse sftp port (8d8c99d)
• elvsh: disable daemon (96e5293)
• embeded bash binary won't run, throws SEGV (9fca402)
• emp3r0r should exit after executing -gencert (33edc36)
• empty agent uuid (416aadc)
• existing stager HTTP server should shutdown gracefully when a new stager is requested (54005d8)
• fail to check command output from agent, agent then gets marked as unresponsive incorrectly (14553b6)
• file downloading progress might stuck at 100% when connection is interrupted (37eabb2)
• go get -u (8c90301)
• guadian shellcode unable to start agent (9b81317)
• guardian shellcode: restore original binary (a07b280)
• handle AES decryption panic (48e362e)
• help user understand how stager URL works (71905e5)
• hidden_pids list gets overwritten (fbf7c9c)
• igonore cmdline args when run as DLL (4dd830e)
• improve PATH handling on Windows/Linux (dfcf572)
• improve upgrade_agent (a80f30b)
• improve file downloading feature (2ec7f02)
• inaccurate waitqueue count (4eeacf6)
• incomplete downloads cannot be resumed (bbd57f9)
• incomplete file download percentage (b4e120e)
• inject_loader (694fa31)
• killing non-existent processes (03fdf33)
• lengthy log (a3e2f72)
• let user choose to inject existing lib/sc (47fd9e6)
• linux agent proc renaming when using linux/bash stager (575777f)
• loader.so extraction error (03fde3d)
• loader.so should return error for non-amd64 (4170414)
• loader.so unable to find exe due to malformed path name (eec2dcc)
• log requests to stager HTTP server (787344d)
• long lines in System Info pane (ef6f1d9)
• make bash command line look normal (2315c96)
• mips builds missing (dd9eed5)
• module unpack using xz (177eaa2)
• multi-arch build, cc crash on start (fb04c2c)
• no error reported when lpe_helper fails (39284ab)
• no need to remove in python stager (09c1c03)
• optimize profiles persistence (963ba13)
• outdated loader.so (3ee239e)
• pack modules with xz, reduce size even more (955b6bd)
• panic on HTTP2 server (45d0ff7)
• panic: nil ref when UDP port_fwd session dies (0cd3746)
• patch static ELFs and patchelf itself (286ddfb)
• persistence using profiles (#260) (409f51c)
• portfwd timeout implementation (b22e91d)
• prefer custom bash binary (9c13feb)
• premature downloading from agent side, '.downloading' file not removed (b4598d5)
• process renaming can't start new process (2ca3fc1)
• python stager not working and not secure (4962cd8)
• reduce CPU load (2f5ed34)
• reduce noisy logging for debug level 2 (56b3d9a)
• refactor: merge Linux/Windows agent code (db70d70)
• release-please: switch to tar.zst (d430c7d)
• remove injector in get_persistence, etc (f7e04b1)
• remove vim command in favor of file_manager (6164d95)
• remove packer (713e725)
• remove redundant cmdline args (a2ee4f1)
• remove unnecessary colors in "system info" (ca14ba1)
• report arp cache (658c823)
• req verification for DownloadViaCC (e40db33)
• run modules without specifying target (8630a24)
• run path error (773ee53)
• sanitize filename (33f724e)
• screenshot downloading fails (886e864)
• scripts unable to run (32a808a)
• security issue in archiver (ffd261e)
• sftp improvements (80deffd)
• sftp pane not opening (82e2fc5)
• shell pane unable to start when run from loader.so (2b6d3ea)
• show C2 address in agent system info (7032d34)
• some crypto functions (e425081)
• sometimes CA cert is not added to agent config (a003cd0)
• sort hidden_pids list (a63dcef)
• ssh C2 relay client should retry connection until SSH session is established (966147b)
• stager content should be copied to clipboard automatically when possible (0425501)
• syscall.Dup2 not ready for multi-arch support (13826d2)
• throw error if shellcode is empty (06b6549)
• timeout connections for socks5 proxy (1b4c6ca)
• timeout kill should not happen with cmds like get (9ddf659)
• tmux config: status bar scripts not working (db9ba69)
• tmux history length too small (c15fe26)
• tmux keeps switching back to home window (ad9d887)
• tmux pane resizing issues (7849902)
• too many python files, and libs not added (7757097)
• trying to obtain output (b90975f)
• typo (326461c)
• UDP forwarding (c462312)
• unable to log to file (55c4f7b)
• unable to read config when started by loader.so (9074fc4)
• unable to read mac addr in kvm machines (virtio NIC) (58ed35a)
• unable to restore binary (d2196c9)
• update deps (f4b177f)
• update deps (f401df2)
• update deps (298f87c)
• update deps (2aabc1e)
• upgrade mholt/archiver (898e4a4)
• upgrade dependencies (069484a)
• upgrade deps (441b978)
• use bash shell when started by loader.so (d12bda5)
• use base64 encoding for bash stager (4d9657c)
• use fallback UUID when unable to obtain product serial (bbbfd73)
• use trusted built-in CA pool (8ae44f0)
• UUID is all zero for Windows (fd487d6)
• winpeas: support both ps1 and batch format (0ebd71c)
• word wrapping issues (9ab1786)
• write back agent binary so elvsh can still start (9966d53)
• xz should be single-threaded (4056da9)

---

This PR was generated with Release Please. See documentation.

[github-actions]

Stale pull request message