search
AdaptixC2 GitHubExtension-Kit

v1.1 -> v1.2

circle-info

Contributors to the GitHub update include: Hesti4arrow-up-right, Sakura529arrow-up-right, LongWayHomiearrow-up-right, BlackMeerkatarrow-up-right, sagiolarrow-up-right, shashinmaarrow-up-right

hashtag
AdaptixC2

circle-exclamation

Building the client now requires QT > 6.8.0. If your Linux system uses a different version by default, use Docker to build the AppImage file.

New:

  • Added static AppImage client build to Docker. Windows builds are now performed using a batch script via MSYS2.

  • AxScript now has a full server implementation. Scripts can be loaded via a profile file.

  • The server no longer stores data in memory. All data processing is performed directly in the database.

  • Web socket authentication is now performed only via OTP tokens.

  • QSS themes are no longer used, and most old fonts have been removed from the client application. To ensure a consistent appearance across all systems, screen resolutions, zoom levels, and other settings, QLementine styles have been selected. The default font is now JetBrains Mono, and for the terminal, Hack.

  • You can now specify a custom application style and a console style in the settings.

  • The ability to notify about events in Slack, Telegram, and WebHook has been removed from TeamServer.

  • The method for transferring files and data (more than 3 MB) from the client to the server has been updated and optimized.

  • New WEB API: /screen/image, /agent/command/raw.

Fix:

  • Now the listener is saved even if its start was unsuccessful.

hashtag
Beacon

New:

  • Implemented Async BOF function.

  • The ps run command now supports the -i flag, a new process will be started with the current session token.

  • Multiple URIs, User-Agents, and Host Headers with rotation: the HTTP beacon now supports configuring multiple values for URIs, User-Agents, and Host Headers (by Hesti4arrow-up-right)

  • Rotation modes (sequential / random): a new "Rotation Mode" option in the agent build config lets operators choose between round-robin (sequential) and randomized rotation for all rotating fields (servers, URIs, UAs, Host Headers) (by Hesti4arrow-up-right)

  • Active round-robin for servers: server rotation now happens on every callback (not only on failure), distributing traffic across all configured C2 addresses (by Hesti4arrow-up-right)

  • Add IAT Hiding support (by Hesti4arrow-up-right)

Fix:

hashtag
Gopher

New:

  • Implemented Async BOF function

  • Implement C-style printf specifiers and BeaconFormat API suite

Fix:

  • Prevent GC from collecting DataExtract buffers

hashtag
Extension-Kit

New:

  • Add docker compose for building (by shashinmaarrow-up-right)

  • Add procfreeze-bof (by Sakura529arrow-up-right)

  • SQL-BOF: Adding SQL Server authentication support (by LongWayHomiearrow-up-right)

  • Add explicit credential support WinRM BOF (by BlackMeerkatarrow-up-right)

  • Add SAL-BOFs: privcheck all, privcheck modautorun, privcheck modsvc, privcheck pshistory, privcheck uacstatus

  • Kerberus-BOF asktgt now has /service options

  • Kerberus-BOF asktgs now has /dmsa and /enterprise options

  • Kerberus-BOF s4u now has /targetdomain, /targetdc, and /impersonateddomain options

  • Added Extrated LAPS password to credentials manager (by sagiolarrow-up-right)

  • execute-assembly sauroneye askcreds smartscan now has a --async option for use as an asynchronous BOF

hashtag
templates-extender

  • Changed TS API:

Previousv1.0 -> v1.1NextGetting Starting

Last updated