Merge pull request #10 from dreamkinn/main

Added shellcode arguments functionality

OffensivePipeline/Modules/Donut.cs

@@ -46,6 +46,10 @@ public ModuleOutput Run()
                     config.Bypass = 3; //Behavior for bypassing AMSI/WLDP : 1=None, 2=Abort on fail, 3=Continue on fail.(default)
                     config.InputFile = exe;
                     config.Payload = Path.Combine(_moduleOutput.OutputPath, $"{_tool.name}.bin");
+                    if (_tool.toolArguments != "") {
+                        LogHelpers.PrintOk($"\t - Arguments passed to shellcode : \"{_tool.toolArguments}\"");
+                        config.Args = _tool.toolArguments;
+                    }
                     int ret = Generator.Donut_Create(ref config);
                     message = "\t\t[+] No errors!";
                     LogHelpers.PrintOk(message);

OffensivePipeline/Program.cs

@@ -52,12 +52,12 @@ static void cleanTools()
             Directory.CreateDirectory(Conf.outputPath);
         }
 
-        public static void LaunchPipeline(string toolName=null)
+        public static void LaunchPipeline(string toolName=null, string toolArguments=null)
         {
             List<ToolConfig> lTools = new List<ToolConfig>();
             if (toolName != null)
             {
-                lTools = YmlHelpers.ReadYmls(toolName);
+                lTools = YmlHelpers.ReadYmls(toolName, toolArguments);
             }
             else
             {
@@ -214,7 +214,7 @@ static void Main(string[] args)
  - List all tools:
     OffensivePipeline.exe list
  - Load seatbelt tool:
-    OffensivePipeline.exe t seatbelt
+    OffensivePipeline.exe t seatbelt [-a/--args] [args]
  - Load all tools:
     OffensivePipeline.exe all
 ";
@@ -254,11 +254,13 @@ OffensivePipeline.exe all
                 command.Description = "Load the specified tool";
                 command.HelpOption("-?|-h|--help");
                 var toolArgument = command.Argument("[tool]", "Tool to build.");
+                var toolArguments = command.Option("-a|--args", "Command-line arguments to pass to the Donut shellcode, will override the yaml value", CommandOptionType.SingleValue);
+
                 command.OnExecute(() =>
                 {
                     if (toolArgument.Value != null)
                     {
-                        LaunchPipeline(toolArgument.Value);
+                        LaunchPipeline(toolArgument.Value, toolArguments.Value());
                     }
                     Console.WriteLine();
                     return 0;

OffensivePipeline/ToolConfig.cs

@@ -8,7 +8,7 @@ namespace OffensivePipeline
 {
     public class ToolConfig
     {
-        public ToolConfig(string name, string description, string gitLink, string solutionPath, string language, string plugins, string authUser, string authToken)
+        public ToolConfig(string name, string description, string gitLink, string solutionPath, string language, string plugins, string authUser, string authToken, string toolArguments)
         {
             this.name = name;
             this.description = description;
@@ -18,6 +18,7 @@ public ToolConfig(string name, string description, string gitLink, string soluti
             this.plugins = plugins.Split(',').Select(s => s.Trim()).ToList<string>();
             this.authUser = authUser;
             this.authToken = authToken;
+            this.toolArguments = toolArguments;
         }
 
         public string name { get; set; }
@@ -28,5 +29,6 @@ public ToolConfig(string name, string description, string gitLink, string soluti
         public List<string> plugins { get; set; }
         public string authUser { get; set; }
         public string authToken { get; set; }
+        public string toolArguments { get; set; }
     }
 }

OffensivePipeline/Tools/ADCSPwn.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/ADCollector.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/ADFSDump.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/ADSearch.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/BetterSafetyKatz.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/Certify.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/DeployPrinterNightmare.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/EDD.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/ForgeCert.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/Group3r.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/KrbRelay.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/KrbRelayUp.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/LockLess.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/PassTheCert.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/PurpleSharp.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/Rubeus.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SafetyKatz.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SauronEye.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SearchOutlook.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/Seatbelt.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken: 
+    toolArguments: 

OffensivePipeline/Tools/SharPersist.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/Sharp-SMBExec.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SharpAppLocker.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpBypassUAC.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpCOM.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpChisel.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpChromium.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SharpCloud.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpCookieMonster.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpCrashEventLog.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpDPAPI.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SharpDir.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpDump.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpEDRChecker.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpExec.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpGPOAbuse.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SharpHandler.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpHose.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpHound3.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken:  
+    authToken:      
+    toolArguments: 

OffensivePipeline/Tools/SharpKatz.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpLAPS.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpMapExec.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpMiniDump.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpMove.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: 

OffensivePipeline/Tools/SharpNamedPipePTH.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpNoPSExec.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpPrinter.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpRDP.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:     
+    toolArguments: 

OffensivePipeline/Tools/SharpReg.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSCCM.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSQLPwn.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpScribbles.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSearch.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSecDump.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpShares.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSniper.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSphere.yml

@@ -7,3 +7,4 @@ tool:
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
     authToken:  
+    toolArguments: 

OffensivePipeline/Tools/SharpSpray.yml

@@ -6,4 +6,5 @@ tool:
     language: c#
     plugins: RandomGuid, RandomAssemblyInfo, BuildCsharp, ConfuserEx, Donut
     authUser:
-    authToken: 
+    authToken:
+    toolArguments: