View Issue Details

IDProjectCategoryView StatusLast Update
0006093Kali Linux[All Projects] Feature Requestspublic2020-06-17 13:07
Reportertjnull Assigned To 
PrioritynormalSeverityfeatureReproducibilityalways
Status acknowledgedResolutionopen 
Product Version2020.1 
Target VersionFixed in Version 
Summary0006093: Adding "red team" tools to Kali Linux
DescriptionIn recent years we have seen a lot users start to use C2 frameworks for their assessments and Red Team operations on Kali Linux. These are the following packages that have been tested and are working properly in Kali Linux:

bombshell https://github.com/ElevenPaths/ibombshell
Covenant https://github.com/cobbr/Covenant
EvilOSX https://github.com/Marten4n6/EvilOSX
Faction C2 https://github.com/FactionC2/Faction
Fudge C2: https://github.com/Ziconius/FudgeC2
Godoh: https://github.com/sensepost/goDoH
koadic: https://github.com/zerosum0x0/koadic
merlin: https://github.com/Ne0nd0g/merlin
poshc2: https://github.com/nettitude/PoshC2
silent trinity: https://github.com/byt3bl33d3r/SILENTTRINITY
sliver: https://github.com/BishopFox/sliver
Empire 3.0: Already in Kali Linux (apt install powershell-empire)

I would like to add these packages to Kali Linux and have a meta package be created.
Steps To ReproduceHere the steps that are need to install each package in Kali Linux. Note: Some of these packages do require Docker and golang to be installed when created the package:

Covenant https://github.com/cobbr/Covenant

Installation:
apt install dotnet-sdk-2.2
git clone --recurse-submodules https://github.com/cobbr/Covenant
cd Covenant/Covenant
dotnet build
dotnet run


EvilOSX (Has not been maintained in the past 2 years)
Installation:
git clone https://github.com/Marten4n6/EvilOSX
pip3 install -r requirements.txt
Start Server: python3 start.py
Start

Faction C2: Needs docker installed and docker packages for it...
git clone https://github.com/FactionC2/Faction/
apt install docker
apt install docker ce
bash install.sh

Fudge C2 (Bugs Right now and still in Beta)

Godoh (Go C2 framework. Does not have any Precompiled binaries or payloads)
apt install golang


bombshell (Works with python3 nicely)
git clone https://github.com/ElevenPaths/ibombshell
cd ibombshell\ c2/
pip3 install -r requirements.txt

koadic
git clone https://github.com/zerosum0x0/koadic.git
cd koadic
pip3 install -r requirements.txt
./koadic

merlin (Requires golang)
git clone https://github.com/Ne0nd0g/merlin
Merlin Server: go run cmd/merlinserver/main.go
Merlin Agent: go run cmd/merlinagent/main.go


poshc2

wget https://raw.githubusercontent.com/nettitude/PoshC2/master/Install.sh
chmod +x ./Install.sh
./Install.sh

powerhub

pip3 install -r requirements.txt
python3 powerhub.py

silent trinity

#~ git clone https://github.com/byt3bl33d3r/SILENTTRINITY
#~ pip3 install --user pipenv && pipenv install && pipenv shell
#~ python st.py

sliver

Must have docker running
python3 build.py

docker run -it sliver:latest
Additional InformationPlease let me know if there is anything I can do to build and support this metapackage.

Relationships

related to 0006136 resolvedsbrun ibombshell - Tool to deploy a post-exploitation prompt at any time 
related to 0006137 acknowledged Covenant - collaborative .NET C2 framework for red teamers 
related to 0006138 acknowledged EvilOSX - An evil RAT (Remote Administration Tool) for macOS / OS X. 
related to 0006139 acknowledged Faction - C2 framework 
related to 0006140 assignedsbrun FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities. 
related to 0006141 acknowledged goDoH - A DNS-over-HTTPS C2 
related to 0006142 resolvedsbrun Koadic - C3 COM Command & Control - JScript RAT 
related to 0006143 acknowledged merlin - cross-platform post-exploitation HTTP/2 Command & Control server and agent 
related to 0006144 acknowledged PoshC2 - Python Server for PoshC2 
related to 0006145 resolvedsbrun SILENTTRINITY - An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR 
related to 0006146 resolvedsbrun sliver - Implant framework 

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-02-10 22:47 tjnull New Issue
2020-02-13 14:23 g0tmi1k Status new => acknowledged
2020-02-13 14:24 g0tmi1k Severity major => feature
2020-02-13 14:24 g0tmi1k Priority urgent => normal
2020-02-26 21:19 g0tmi1k Relationship added related to 0006136
2020-02-26 21:22 g0tmi1k Relationship added related to 0006137
2020-02-26 21:25 g0tmi1k Relationship added related to 0006138
2020-02-26 21:29 g0tmi1k Relationship added related to 0006139
2020-02-26 21:33 g0tmi1k Relationship added related to 0006140
2020-02-26 21:39 g0tmi1k Relationship added related to 0006141
2020-02-26 21:43 g0tmi1k Relationship added related to 0006142
2020-02-26 21:46 g0tmi1k Relationship added related to 0006143
2020-02-26 21:49 g0tmi1k Relationship added related to 0006144
2020-02-26 21:52 g0tmi1k Relationship added related to 0006145
2020-02-26 21:55 g0tmi1k Relationship added related to 0006146
2020-02-26 22:02 g0tmi1k Category Queued Tool Addition => Kali Package Improvement
2020-06-17 13:07 g0tmi1k Category Kali Package Improvement => Feature Requests
2020-06-17 13:07 g0tmi1k Summary Kali Linux Red Team Metapackage => Adding "red team" tools to Kali Linux