search

MythicAgents / merlin

Cross-platform post-exploitation HTTP Command & Control agent written in golang
GNU General Public License v3.0
88 stars 11 forks source link

Error when AES PSK not provided #20

Closed Ne0nd0g closed 1 week ago

Ne0nd0g commented 2 months ago

Referencing this issue from @A-Lazar-A https://github.com/MythicC2Profiles/http/issues/18

When Merlin is built in Mythic without an AES key, the Agent fails to run.

[DEBUG]Entering agent.New() function
[i]Host Information:                                                                                    
[i]     Agent UUID: 6c354f7a-e923-4835-8543-88417e9ce33c                                                
[i]     Hostname: kali                                                                                  
[i]     Platform: linux                                                                                 
[i]     Architecture: amd64                                                                             
[i]     PID: 58524                                                                                      
[i]     Process: /home/kali/mythic_agents/merlin_http                                                   
[i]     User Name: root                                                                                 
[i]     User GUID: 0                                                                                    
[i]     Integrity Level: 4                                                                              
[i]     IPs: [127.0.0.1/8 ::1/128 192.168.0.194/24 fe80::3ec7:b883:7a3c:da23/64 172.17.0.1/16]          
[DEBUG]Leaving agent.New function                                                                       
[DEBUG]Entering into clients.mythic.New()...                                                            
[DEBUG]Config: {AgentID:6c354f7a-e923-4835-8543-88417e9ce33c AuthPackage:rsa PayloadID:6c4ec365-70b7-4fe9-8f43-36539add67e8 Protocol:http Headers: Host: URL:http://192.168.0.134:80/data Proxy: UserAgent:Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko PSK:%!s(<nil>) JA3: Parrot: Padding:4096 InsecureTLS:true Transformers:mythic,aes ClientType:go}                                                       
there was an error Base64 decoding the PSK:                                                             
illegal base64 data at input byte 0
A-Lazar-A commented 1 month ago

Any updates?

Ne0nd0g commented 1 month ago

@A-Lazar-A , there are no updates. I acknowledge that there is a bug and plan to fix it. What are your goals for not using AES?