forked from EmpireProject/Empire
-
-
Notifications
You must be signed in to change notification settings - Fork 579
/
packet_capture.py
37 lines (30 loc) · 1.02 KB
/
packet_capture.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
from empire.server.common.empire import MainMenu
from empire.server.core.module_models import EmpireModule
class Module:
@staticmethod
def generate(
main_menu: MainMenu,
module: EmpireModule,
params: dict,
obfuscate: bool = False,
obfuscation_command: str = "",
):
max_size = params["MaxSize"]
trace_file = params["TraceFile"]
persistent = params["Persistent"]
stop_trace = params["StopTrace"]
if stop_trace.lower() == "true":
script = "netsh trace stop"
else:
script = "netsh trace start capture=yes traceFile=%s" % (trace_file)
if max_size != "":
script += " maxSize=%s" % (max_size)
if persistent != "":
script += " persistent=yes"
script = main_menu.modulesv2.finalize_module(
script=script,
script_end="",
obfuscate=obfuscate,
obfuscation_command=obfuscation_command,
)
return script