v4.8.3

[4.8.3] - 2022-11-11

[4.8.2] - 2022-11-11

• Updated crontab method to work with python3 (@Cx01N)
• Updated linux_privesc_check to work with python3 (@Cx01N)
• Fixed mistakes in README.md (@Cx01N)
• Removed unused class in python agents (@Cx01N)

v4.8.1

[4.8.1] - 2022-10-30

• Added container structure test to CI (@vinnybod)
• Added a fallback checkout that doesn't use a token (@vinnybod)
• Revamped README.md (@Cx01N)
• Simplified Dockerfile install process (@lavafroth)
• Fixed crashing issue with IronPython agent (@Cx01N)
• Fixed infinite loop output stream for csharpserver plugin (@dwilson5)
• Fixed querying stale and active agents (@lavafroth)

v4.8.0

[4.8.0] - 2022-08-30

• Updated compiler to .NET SDK 6.0 (@Hubbl3)

v4.7.3

[4.7.3] - 2022-08-20

• Added SANS 565 to README (@Cx01N)
• Fixed error when entering empty line into client (@Cx01N)
• Fixed Dropbox listener staging issue (@Cx01N)
• Fixed OneDrive listener staging issue (@Cx01N)

[4.7.2] - 2022-08-20

v4.7.1

[4.7.1] - 2022-07-29

• Fix write_dllhijacker.yaml script_path reference (@kevNii)

[4.7.0] - 2022-06-25

• Update Python version on Dockerfile (@vinnybod)
• Add Python 3.10 to CI tests (@vinnybod)
• Add a resource file command to the client (@vinnybod)
• Add PowerShell and C# to IronPython modules (@Cx01N)
• Add ChiselServer, SocksProxyServer plugin as a submodule (@Cx01N)
• Fixed Sharpire download function (@Cx01N)
• Fixed spawnas to work with new bat file format (@Cx01N)
• Fixed tasking error for IronPython launcher executable (@Cx01N)
• Remove some python dependencies (@vinnybod)
• Make tkinter import failure a warning instead of a fatal error (@vinnybod)

v4.6.1

[4.6.1] - 2022-06-10

• Use a BC-Security fork of Donut to resolve a python 3.10 issue (@Cx01N)
• Update reflective pick dlls (@Hubbl3)

[4.6.0] - 2022-05-24

• Added Certify C# module (@Cx01N)
• Added embedded VNC client and launcher (@Cx01N)
• Added obfuscate option to C# payloads (@Hubbl3)
• Added global obfuscation to C# modules (@Cx01N)
• Added -BasicParsing to .bat launcher (@X0RW3LL)
• Added obfuscation to bat launcher for HTTP and HTTP COM (@Cx01N)
• Added option to enable/disable JA3 evasion (@Cx01N)
• Added JA3 evasion technique to Malleable HTTP (@Cx01N)
• Added option to client config to remove borders on tables (@Cx01N)
• Updated staging for agents (@Cx01N)
• Updated confuser to confuserex 2 (@Cx01N)
• Fixed nim install on Ubuntu by using choosenim installer (@vinnybod)
• Converted reset.sh script to Python and add tests (@vinnybod)
• Add a --reset flag to the client (@vinnybod)

v4.5.5

[4.5.5] - 2022-05-07

• Fixed http bug in malleable, http-com, and onedrive listeners (@Cx01N)
• Updated jq to 1.2.2 to avoid install errors (@Cx01N)

v4.5.4

[4.5.4] - 2022-04-26

• Fixed typo from 4.5.3 with the bypass database model (@vinnybod)

v4.5.3

[4.5.3] - 2022-04-24

• Fixed issue where default_response is needed for external/generate_agent (@Cx01N)
• Added check if bypass language is compatible (@Cx01N)
• Added error message formatting for listeners and stagers (@Cx01N)
• Added zip to the Dockerfile which is necessary to create ms files such as docx (@junquera)

[4.5.2] - 2022-04-12

• Fix string format errors in dbx listener (@awsmhacks)
• Fix script_end error in schtasks.py (@harry-cmdzero)
• Add workflows for doing the public releases (@vinnybod)
• Pull out common code from listeners to a listener_utils module (@Cx01N)
• Fix missing script_path and fix variable references in service_stager and service_exe_stager (@harry-cmdzero)

[4.5.1] - 2022-03-27

• Fixed empire_config yaml property to include fields that don't exist on the config object (@vinnybod)

[4.5.0] - 2022-03-27

• Updated changelog to use Keep a Changelog (@vinnybod).
• Added tests for listener launchers (@vinnybod).
• Add a step to run the test suite on the Docker image itself (@vinnybod)
• Removed .plugin from the black configuration (@vinnybod)
• Removed random caps from backdoorlnk (@Cx01N)
• Added html files for listener responses (@Cx01N)
• Converted server config to a typed class (@vinnybod)
• Add keyword obfuscation to the config.yaml (@vinnybod)
• Fix proxy_creds variable name in bypassuac (@Cx01N)
• Updated launcher_bat to use web request for launcher (@Cx01N)
• updated malleable profiles with banzarloader (@Cx01N)
• Added C# execution modules (@Cx01N)
• Add tests for launcher code (@vinnybod)
• Split ls/dir command line to get the first element for ls/dir command (@CyrilleFranchet)
• Updated lastwritetime on ls/dir command (@CyrilleFranchet)
• Fix script_end variable on privesc/ask module (@CyrilleFranchet)
• script_import will upload a file from the client's machine (@Cx01N)

Empire v4.4.1

3/6/2022

• Version 4.4.1 Master Release
  - Fixed agent generation with custom headers (@Hubbl3)
  - Fixed missing quote in get_users.yaml (@Cx01N)
  - Fixed displaying info for plugins (@Cx01N)
  - Fixed legacy plugin loading to ignore folders (@Cx01N)
  - Removed http_mapi.ps1
  - Removed comment that global obfuscation and keyword obfuscation cannot be combined (@Cx01N)

2/14/2022

• Version 4.4.0 Master Release
  - Added auto copy to clipboard feature (@Cx01N)
  - Added directory settings to yaml for downloads/stagers/obfuscated_modules (@Cx01N)
  - Added C# process injection module (Cx01N)
  - Added bypass yamls for PowerShell (@Hubbl3)
  - Added Black and Isort integration (@vinnybod)
  - Added tests for loading and generating scripts with defaults (@vinnybod)
  - Updated Psinject to use updated version of reflective pick and bypasses (@Hubbl3)
  - Fixed check for preobfuscation of files (Cx01N)
  - Fixed issue with plugins using tuple (@vinnybod)
  - Removed random capitialization function for listeners (@Cx01N)
  - Removed meterpreter and mapi listeners (@Cx01N)
  - Powerview - added functions for group managed service accounts and fine grained pw pol (@jfmaes)

New Contributors

• @jfmaes made their first contribution in #533

Full Changelog: v4.3.3...v4.4.1