cn33liz / starfighters Goto Github PK

Hello and thanks for a great project.
I am testing this out in my lab where I have a Windows 7 VM and a Kali host with Empire 2.0.

I blocked powershell.exe with AppLocker rules and am successfully able to stage a connection using the JS script here. However, I ran into some issues with the module functionality of Empire. Most of the interesting modules pull data from the host via Powershell. Many of the enumeration modules, such as powershell/situational_awareness/network/powerview/get_gpo, do not work if powershell.exe is blocked.

Would it be helpful to maintain a list of modules that are confirmed working within the StarFighters environment?

First off, thanks for releasing such an awesome pentesting tool! Is there a way to view the deserialized object code before running it?

it always prompt when i run this script.. can you make it using .net 2? thanks

o.CreateInstance(entry_class);

It's prevented from executing because of the string "EmpireHost." I tried with a different string and it seems to work.

I suggest instead of releasing the output as the code, release the entire setup, so we can generate our own payloads with randomized entry class names. Or maybe there is an even better way of dynamically generating the entry class? Perhaps this is outside of the scope for the project...

Using Symantec Endpoint Protection.