lawndoc / mediator Goto Github PK

An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.

License: GNU Affero General Public License v3.0

Dockerfile 2.81% Python 94.86% Makefile 2.33%

end-to-end-encryption handlers incident-response incident-response-tooling live-response pentesting pentesting-tools plugin-system plugins python python-3 python-script python3 red-team red-teaming reverse-shell reverse-shells security-tools socket-programming

mediator's Introduction

Hi, I'm C.J.

I work in InfoSec, but I have broad interests encompassing many areas of IT. Most of my interests are driven by my curiosity and love for programming and automation. Whenever I think of something cool or have an idea to make my life easier, it becomes a project on my GitHub. If you find one of my projects useful, please consider becoming a sponsor so I can dedicate more time to my open source work.

💗 My GitHub Sponsor Page

Here's some information on my projects and contributions:

✨ My top repos: ✨

Connect with me on social media:

PGP Public Key 🔒

mediator's People

Contributors

Stargazers

Watchers

Forkers

optionalg gh0st0ne usama7628674 sec-js kernelhooking takianfif develeop istoliving nhpt drotha2 silocityit s1nglethr3ad data-gami nxg-7

mediator's Issues

Automate new releases

New versions should automatically create a release and build the clients to publish with the release.

change windows shell from dos cmd to powershell

It's in the title. Why didn't I do this from the beginning?

add pyinstaller spec files and makefiles

The goal is to create a simple way for users to package up the clients with their dependencies and make them more portable. Especially for the reverse shell, this is very important for standalone usability.

Create streamed tty

Right now the reverse shell is limited and can't do things like tmux, vim, or even tab completion. I want to figure out a way to get an SSH-like session with colors and full TTY.

Update linuxTarget.py to support encryption

linuxTarget.py is still in pre-encryption implementation. The script needs to be updated to support end-to-end encryption like windowsTarget.py

Create actual authentication between the clients and server

Currently, the server knows a connection is from a permitted client based on a port-specific "knock" phrase sent upon connection. Adding an actual authentication method to ensure only permitted clients can connect would be more secure.

make client-to-client connection modular

I want to functionally separate the initial connection that happens between the two clients including the key exchange up until the point where any reverse-shell specific data would be sent. The ability to bridge two client connections through a server and encrypt them end-to-end is independently useful and should be broken out into its own classes and potentially its own repository.

This will require a MAJOR refactor to the codebase. Off the top of my head, the following would be needed at a minimum:

At the connection level, the clients' roles will have to switch from the "operator-target" model to a single client type solely relying on being joined through connection key matching. This will require the key exchange to happen differently -- currently, the operator holds the private key and the target generates the asymmetric key. In reality, this can happen in the opposite direction. The first connection with a specific key can assume the role of the "operator" and the matching connection can assume the role of the "target" for the purposes of the key exchange. The clients' roles will have to be specified by the mediator server. Additionally, due to this change only a single port will be used.

edit: typo

prompt getting cut off after executing a plugin

After a plugin runs, the first half or so of the following prompt is cutting cut off. This appears to be an issue on the handler side because the target is sending the full prompt over the network. I think it might have something to do with the mutex that blocks output while a plugin is running.