Empire icon indicating copy to clipboard operation
Empire copied to clipboard

Published 20 hours ago verified publisher icon BC-SECURITY

[FEATURE REQUEST] Trying to add some features

Open analyserdmz opened this issue 4 years ago • 1 comments

Is your feature request related to a problem? Please describe.

No, it's about a completely new feature.

Describe the solution you'd like

Semi-random obfuscation on HTTP stagers and payloads.

Describe alternatives you've considered

I already have a custom and working PowerShell obfuscator with very good bypass rates.

Additional context

I want to include my custom obfuscator in Empire's HTTP stagers and payloads. Trying to wrap ALL HTTP-related stagers and payloads, I just need a list with every script that gets transfered when staging via HTTP. That's all.

Thank you!

analyserdmz avatar Nov 10 '20 18:11 analyserdmz

@analyserdmz the simplest way would be to hook the obfuscate command in the helpers.py file. All the modules already have the obfuscate command exposed in them.

Hubbl3 avatar Nov 18 '20 03:11 Hubbl3