Unverified Commit cd324994 authored by Baptiste MOINE's avatar Baptiste MOINE
Browse files

Initial commit

parents
.git
.gitignore
ROOT=.
#
# Powershell Empire container
#
# Written by:
# Baptiste MOINE <contact@bmoine.fr>
#
# Pull base image.
FROM kalilinux/kali-linux-docker
MAINTAINER Baptiste MOINE <contact@bmoine.fr>
# Define variables.
ENV DEBIAN_FRONTEND=noninteractive \
STAGING_KEY=RANDOM
# Install dependencies.
RUN echo "deb http://http.kali.org/kali kali-rolling main contrib non-free\ndeb-src http://http.kali.org/kali kali-rolling main contrib non-free" >/etc/apt/sources.list && \
apt-get clean && \
apt-get -fy update && \
apt-get -fy dist-upgrade && \
apt-get -y install python git python-pip libssl-dev libffi-dev python-dev python-m2crypto swig lsb-release && \
pip install pyopenssl
# Install Powershell Empire.
RUN git clone https://github.com/PowerShellEmpire/Empire.git /root/empire && \
bash -c "cd /root/empire/setup && ./install.sh"
# Set workdir.
WORKDIR /root/empire
# TCP port that container will listen for connections.
EXPOSE 8080/tcp
# Setup startup script.
ADD start.sh /root/
RUN chmod +x /root/start.sh
CMD ["/root/start.sh"]
Powershell Empire in Docker
===========================
## Introduction ##
Empire is a post-exploitation framework that includes a pure-PowerShell2.0 Windows agent, and a pure Python 2.6/2.7 Linux/OS X agent.
It is the merge of the previous PowerShell Empire and Python EmPyre projects.
The framework offers cryptologically-secure communications and a flexible architecture.
On the PowerShell side, Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitation modules ranging from key loggers to Mimikatz, and adaptable communications to evade network detection, all wrapped up in a usability-focused framework.
PowerShell Empire premiered at [BSidesLV in 2015](https://www.youtube.com/watch?v=Pq9t59w0mUI) and Python EmPyre premeiered at HackMiami 2016.
Here's a [quickstart](http://www.powershellempire.com/?page_id=110) and [full documentation](http://www.powershellempire.com/?page_id=83).
## Installation ##
Clone the project:
```bash
git clone https://gitlab.com/Creased/docker-powershell-empire empire/
cd empire/
```
Preapre container:
```bash
docker-compose build
```
Start container:
```bash
docker-compose up -d
```
Attach to container:
```bash
docker-compose exec empire bash
```
Reset databases (and certs):
```bash
./setup/reset.sh
```
## Usage ##
Start a new empire:
```bash
pkill empire
./empire
```
Setup listener:
```bash
listeners
uselistener http
set Host http://vps.bmoine.fr:8080
set Port 8080
execute
launcher powershell
exit
y
```
Re-start container:
```bash
docker-compose down
docker-compose up -d
```
Follow logs:
```bash
docker-compose logs -f
```
Voilà!
#
# Powershell Empire container
#
# Written by:
# Baptiste MOINE <contact@bmoine.fr>
#
version: '3'
networks:
front:
# swarm usage:
# driver: overlay
# non-cluster usage:
driver: bridge
# with custom 'front' bridge configured on host
# external: true
services:
empire:
build: ${ROOT:-.}
image: creased/powershell-empire:latest
networks:
- front
restart: always
volumes:
- ${ROOT:-.}/data/empire.db:/root/empire/data/empire.db:rw
- ${ROOT:-.}/data/empire.pem:/root/empire/data/empire.pem:rw
ports:
- 8080:8080/tcp
#!/bin/bash
./empire
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment