The Wayback Machine - http://web.archive.org/web/20220908123457/https://github.com/mitre/builder
Skip to content

mitre/builder

master
Switch branches/tags
3 branches 3 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github
 
 
app
 
 
build
 
 
conf
 
 
payloads
 
 
templates
 
 
.gitignore
 
 
README.md
 
 
VERSION.txt
 
 
hook.py
 
 
install.sh
 
 
requirements.txt
 
 
CALDERA Plugin: Builder Installation: Dependencies/Requirements: Sample Ability

README.md

CALDERA Plugin: Builder

The Builder plugin enables CALDERA to dynamically compile code segments into payloads that can be executed as abilities by implants.

Installation:

Install the required docker components with the following command:

sudo ./install.sh

Dependencies/Requirements:

  1. Docker
  2. docker-py

Sample Ability

The following ability will compile the HelloWorld.exe executable, copy it to the machine running the agent, and execute it using either cmd or PowerShell.

---

- id: 096a4e60-e761-4c16-891a-3dc4eff02e74
  name: C# Hello World
  description: Dynamically compile HelloWorld.exe
  tactic: execution
  technique:
    attack_id: T1059
    name: Command-Line Interface
  platforms:
    windows:
      psh,cmd:
        build_target: HelloWorld.exe
        language: csharp
        code: |
          using System;

          namespace HelloWorld
          {
              class Program
              {
                  static void Main(string[] args)
                  {
                      Console.WriteLine("Hello World!");
                  }
              }
          }

DLL dependencies can be added by declaring a payloads list at the root of the ability.

About

Caldera plugin to dynamically compile code segments from abilities

caldera.mitre.org/

Topics

caldera caldera-plugin

Resources

Readme

Stars

3 stars

Watchers

20 watching

Forks

5 forks

Releases

3 tags

Packages

No packages published

Contributors 5

Languages