README.md 1.91 KB
Newer Older
Baptiste MOINE's avatar
Baptiste MOINE committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
Powershell Empire in Docker
===========================

## Introduction ##

Empire is a post-exploitation framework that includes a pure-PowerShell2.0 Windows agent, and a pure Python 2.6/2.7 Linux/OS X agent.

It is the merge of the previous PowerShell Empire and Python EmPyre projects.

The framework offers cryptologically-secure communications and a flexible architecture.

On the PowerShell side, Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitation modules ranging from key loggers to Mimikatz, and adaptable communications to evade network detection, all wrapped up in a usability-focused framework.

PowerShell Empire premiered at [BSidesLV in 2015](https://www.youtube.com/watch?v=Pq9t59w0mUI) and Python EmPyre premeiered at HackMiami 2016.

Here's a [quickstart](http://www.powershellempire.com/?page_id=110) and [full documentation](http://www.powershellempire.com/?page_id=83).


## Installation ##

Clone the project:

```bash
git clone https://gitlab.com/Creased/docker-powershell-empire empire/
cd empire/

```

Preapre container:

```bash
docker-compose build

```

Start container:

```bash
docker-compose up -d

```

Attach to container:

```bash
docker-compose exec empire bash

```

Reset databases (and certs):

```bash
53
screen -S empire -L -Logfile /root/empire/data/empire.log
Baptiste MOINE's avatar
Baptiste MOINE committed
54
./setup/reset.sh
55
56
exit
y
Baptiste MOINE's avatar
Baptiste MOINE committed
57
58
59

```

60
## Configuration ##
Baptiste MOINE's avatar
Baptiste MOINE committed
61
62
63
64
65
66
67
68
69
70
71
72
73

Start a new empire:

```bash
./empire

```

Setup listener:

```bash
listeners
uselistener http
74
set Host http://vps2.bmoine.fr:8080
Baptiste MOINE's avatar
Baptiste MOINE committed
75
76
77
set Port 8080
execute
launcher powershell
78
79
80
81
82
83
84
85

```

Detach from screen using `CTRL`+`A``D`.

Escape from container:

```bash
Baptiste MOINE's avatar
Baptiste MOINE committed
86
87
88
89
90
91
92
93
94
95
96
97
exit

```

Re-start container:

```bash
docker-compose down
docker-compose up -d

```

98
Display logs:
Baptiste MOINE's avatar
Baptiste MOINE committed
99
100
101
102
103
104

```bash
docker-compose logs -f

```

105
106
107
108
109
110
111
112
113
114
115
116
117
118
Attach to the container:

```bash
docker-compose exec empire bash

```

Attach to the screen:

```bash
screen -r empire

```

Baptiste MOINE's avatar
Baptiste MOINE committed
119
Voilà!
120