search

sliverarmory / armory

The Official Sliver Armory
https://sliver.sh/
80 stars 11 forks source link

Add `privkit` #47

Open n3rada opened 5 months ago

n3rada commented 5 months ago

Do you think it's possible to add the privkit tool?

I wanted to create the extensions.json file myself and ask the project owner for a PR, but I have no idea how to use multiple .o files in the extensions.json file.

c2biz commented 5 months ago

I took a look at the project earlier this week and due to how the project consists of multiple BOFs I think it would be better to wait for the new and upcoming extension model - improved to better support collections of BOFs such as this as a single extension.

behindblackwalls commented 4 months ago

I took a look at the project earlier this week and due to how the project consists of multiple BOFs I think it would be better to wait for the new and upcoming extension model - improved to better support collections of BOFs such as this as a single extension.

Is this planned to0? That's exciting, where can I read more about this? I'm trying to learn module development for sliver, I'd like to help porting things to the armory/making extensions but don't know where to start. I know a bit of GO and C#.

n3rada commented 4 months ago

@c2biz how could I run directly from sliver session a bof, like from /BOFs/PrivKit/unquotedsvcpath.o? Because I tried a simple:

{
    "name": "PrivKit",
    "version": "1.0.0",
    "command_name": "privcheck",
    "extension_author": "n3rada",
    "original_author": "mertdas",
    "repo_url": "https://github.com/mertdas/PrivKit",
    "help": "Detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.",
    "long_help": "",
    "depends_on": "coff-loader",
    "entrypoint": "go",
    "files": [
      {
        "os": "windows",
        "arch": "amd64",
        "path": "alwaysinstallelevated.o"
      }
    ],
    "arguments": [
    ]
  }

And it indefinitely ran...

I also tried to run coff-loader go <path> but without success.

lesnuages commented 4 months ago

I took a look at the project earlier this week and due to how the project consists of multiple BOFs I think it would be better to wait for the new and upcoming extension model - improved to better support collections of BOFs such as this as a single extension.

Is this planned to0? That's exciting, where can I read more about this? I'm trying to learn module development for sliver, I'd like to help porting things to the armory/making extensions but don't know where to start. I know a bit of GO and C#.

Details are here.

n3rada commented 4 months ago

Btw, my attempts to integrate the pivkit failed. If you find time to integrate this, I'll be pleased

nemesis7331 commented 1 month ago

@n3rada here it is :) https://gitlab.com/brn1337/privkit

n3rada commented 1 month ago

Maybe you should put it on your GitHub so they can fork it and integrate it into sliver?