CPunch
/
Laika
mirror of https://github.com/CPunch/Laika.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
223 Commits 1 Branch 0 Tags 8.2 MiB
Commit Graph

89 Commits

Author SHA1 Message Date
CPunch 7c4a5ddc8c VMBoxGen: minor refactoring 2022-10-08 18:32:33 -05:00
CPunch 3316c77667 minor 'DEBUG' refactoring 
- for debug builds, the LAIKA_DEBUG_BUILD macro will be defined in lconfig.h
- LAIKA_OBFUSCATE now controls the winobf IAT obfuscation as well
 2022-10-05 20:36:49 -05:00
CPunch 6ab280d010 lsocket.[ch]: refactored writeInt && readInt 
- switched to laikaS_readu* && laikaS_writeu*
- this gets rid of the ugly malloc() for platforms that don't support VLAs
 2022-09-07 17:53:49 -05:00
CPunch b23057b219 Refactoring: reorganized files 2022-09-01 20:00:37 -05:00
CPunch fab6c5b4f6 typos 2022-07-30 23:16:00 -05:00
CPunch ed96b75577 Moved API obfuscation to LaikaLib target 2022-07-16 16:09:33 -05:00
CPunch 25c18db6bc Bot: added Registry related API to laikaO_init() 
- Also fixed misc. shell bug.
 2022-07-12 18:09:23 -05:00
CPunch f65341c5fa Bot: Fixed CreatePseudoConsole type definition 2022-07-12 16:04:29 -05:00
CPunch fdbe6cf3c7 Bot: More APIs added to laikaO_init() 
- Misc. functions converted to their UTF-8 version
- ClosePseudoConsole & CreateProcessA are now manually 'linked' during runtime
 2022-07-10 19:24:48 -05:00
CPunch 4c8fef7d64 Use FreeLibrary(), not CloseHandle() 2022-07-10 19:24:48 -05:00
CPunch 4d931f28cb Bot: Fixed MSVC warnings 2022-07-10 19:24:48 -05:00
CPunch 35cbd91dd1 Bot: Added oCreatePseudoConsole to laikaO_init() 2022-07-10 19:24:48 -05:00
CPunch f92bbbc85b Bot: added library cleanup to findByHash() 2022-07-10 19:24:48 -05:00
CPunch b2f8efc402 Bot: Added boilerplate windows API obfuscation 
- Grabs the functions directly from the loaded library by walking the exported address table and comparing hashes
- For now, only ShellExecuteA has been setup, more to come
 2022-07-10 19:24:48 -05:00
CPunch 18a6fdd124 Lib: Variadic packets now use the 'size' field as a minimum requirement 2022-06-30 20:19:35 -05:00
CPunch bc071c10d2 Lib: added PEER_PEER type for uninitalized peers 
- defined LAIKA_PING_INTERVAL for the ping task
 2022-06-30 20:19:35 -05:00
CPunch 8092a636ca CNC, Lib, Bot, Shell: New 2nd stage handshake 
- New packet, LAIKAPKT_PEER_LOGIN_REQ
- All peers must prove they have access to the sent pubkey by passing a challenge. A salt is now sent on the handshake response packet, which must be encrypted and sent back through the PEER_LOGIN packet
- Protcol minor version incremented to 0.4
 2022-06-30 20:19:35 -05:00
CPunch 2e4c63c0c6 Bot: misc. formatting fixes 2022-06-29 17:45:51 -05:00
CPunch a7a938c9e8 Bot: fix shell header includes (x2) 2022-06-27 19:48:43 -05:00
CPunch b6eebdd5fb Bot: fixed shell include errors 2022-06-27 19:02:49 -05:00
CPunch 48fa8935c3 Added .clang-format, formatted codebase 2022-06-27 18:57:00 -05:00
CPunch 1d6ce15b3d Minor comments refactoring 2022-06-27 18:20:23 -05:00
CPunch 87f5eaa694 CMake: Minor debug refactoring 
- LAIKA_DEBUG_BUILD is set to true if lower(CMAKE_BUILD_TYPE) matches 'debug'
 2022-06-05 15:51:18 -05:00
CPunch a410a9ac15 Updated Asciinema & fixed windows debug builds 2022-06-04 10:26:25 -05:00
CPunch b00ac16cb3 Shell/CNC: Moved line endings conversion from cnc to shell 
- Also fixed DEBUG output for windows LaikaBot builds
 2022-06-03 20:55:14 -05:00
CPunch fed78402a2 Bot: Obfuscated CNC public key 2022-05-27 17:51:10 -05:00
CPunch 0fdca35f87 Shell: minor refactoring, cnc supports mutiple shells per auth clients 
- while cnc supports multiple shells per auth client, the LaikaShell still only supports 1 concurrent shell at a time.
	this feature is just preparing boilerplate for future features. shell treats all SHELL_* packets for the same shell, regardless of shellID
 2022-05-20 14:10:53 -05:00
CPunch 5aecc1b63f VMBoxGen refactor, obfuscate static CNC ip & port strings 
- VMBoxGen is built before shared lib
- VMBoxGen has no reliance on the shared lib, just the config file
- main config was moved to the root cmakelists
 2022-05-19 01:42:40 -05:00
CPunch 81360a8072 Re-added lboxconfig.h 2022-05-16 17:23:45 -05:00
CPunch 7175e2ec00 Win: winpersist.c now uses obfuscation 
- The API was switched to force Ascii versions of the winapi
 2022-05-16 11:02:56 -05:00
CPunch 7f587f3df2 Bot: windows builds no longer open a console 2022-05-15 18:14:29 -05:00
CPunch 134f1fee37 Bot: add VMBoxGen as a dependency 2022-05-15 15:27:54 -05:00
CPunch f649ca4a56 Win: Static builds & fixed winpersist.c 2022-05-14 13:24:20 -05:00
CPunch c4fc1a1fe6 misc. refactoring, updated comments and minor documentation 2022-05-10 21:03:23 -05:00
CPunch e3a1f51d60 added 'LAIKA_OBFUSCATE' cmake option 
- if defined, enables LAIKA_BOX obfuscation for variables
- new macros (LAIKA_BOX_SKID_START & LAIKA_BOX_SKID_END), become no-ops if LAIKA_OBFUSCATE is undefined
- TODO: use cmake to automate the generation of lboxconfig.h
 2022-05-10 20:28:54 -05:00
CPunch 71db213261 Implemented VMBoxes, linux persistence related strings are obfuscated, added VMBoxGen tool 
- lboxconfig.h holds obfuscated data, which is generated by VMBoxGen
- linpersist.c now uses obfuscated strings
 2022-05-09 16:41:01 -05:00
CPunch 63e36d1ebb Bot: small shell.[ch] + native refactor 
- `struct sLaika_shell` is now a shared struct, `struct sLaika_RAWshell` is the native implementation with `struct sLaika_shell` as it's first member
 2022-05-08 01:21:37 -05:00
CPunch 7d96f3252c Major shell packet refactoring 
- can now open multiple shells per peer (change LAIKA_MAX_SHELLS)
- more sanity checking for public keys (new peers with duplicate keys are killed
- misc. refactoring, added cnc/cpeer.[ch]
 2022-05-07 20:09:42 -05:00
CPunch f90c99ce64 Bot: Strip symbols 2022-05-01 14:21:44 -05:00
CPunch 64f7e40fa0 Windows: Persistence via windows registry 2022-04-22 17:20:31 -05:00
CPunch e80f007df9 Bot: Minor refactoring, tell cnc if failed to open shell 2022-04-20 10:23:00 -05:00
CPunch c3c42e298f Windows: use COMSPEC environment variable to grab the shell 
- shells on windows are now opened from the COMSPEC env variable
- cnc will now ignore malformed shell packets from bots instead of killing them
 2022-04-20 10:10:44 -05:00
CPunch cfe633f1d5 Windows: Added registry manipulation boilerplate 2022-04-18 17:05:26 -05:00
CPunch 34dd36fb67 Windows: implemented laikaB_markRunning() & laikaB_unmarkRunning() 
- use Sleep() for LAIKA_PERSISTENCE in main()
- use Mutex for checking existing LaikaBots
- switched to TEXT() for win32 strings
 2022-04-16 23:54:07 -05:00
CPunch 231881c960 Bot: Minor laikaB_freeShell refactoring 2022-04-16 23:08:21 -05:00
CPunch b60203d3f2 Linux: implemented laikaB_markRunning() & laikaB_unmarkRunning() 
- switched to file locks as that's more discreet
    - tied to LAIKA_PERSISTENCE being defined
 2022-04-16 22:56:05 -05:00
CPunch dac99ddd85 Bot: Only run shell task when shell is open 
- since the shell task is only ran when the shell is open, i decreased the delta to 50ms. this should improve latancy while improving performance for 99% of the time. yay!
 2022-04-14 12:11:29 -05:00
CPunch 9694ae67d8 Added LAIKAPKT_PINGPONG 
- shell now has it's own task service, it's polled in shellC_poll()
- default timeout for peers is 60 seconds, to change this edit the LAIKA_PEER_TIMEOUT in cnc.h
 2022-04-13 12:19:06 -05:00
CPunch 2fe297eb0e Missing semicolon 2022-04-11 12:01:59 -05:00
CPunch 59c01d422b More resilient persistence 
- bot will keep trying to connect if it failed to connect to the CNC or if the bot was killed
- if crontab isn't installed the bot will still run
 2022-04-10 15:45:30 -05:00