commonv1

package
v0.0.0-...-f35177d Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 12, 2025 License: GPL-3.0 Imports: 4 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var File_common_v1_common_proto protoreflect.FileDescriptor

Functions

This section is empty.

Types

type CapCat 

type CapCat struct {

	// Path to file
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

Print file's content capability: Print content of file specified by path (may be used to handle different encoders)

func (*CapCat) Descriptor deprecated 

func (*CapCat) Descriptor() ([]byte, []int)

Deprecated: Use CapCat.ProtoReflect.Descriptor instead.

func (*CapCat) GetPath 

func (x *CapCat) GetPath() string

func (*CapCat) ProtoMessage 

func (*CapCat) ProtoMessage()

func (*CapCat) ProtoReflect 

func (x *CapCat) ProtoReflect() protoreflect.Message

func (*CapCat) Reset 

func (x *CapCat) Reset()

func (*CapCat) String 

func (x *CapCat) String() string

type CapCd 

type CapCd struct {

	// Path to directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

Change process working directory capability: Change process working directory of agent's process

func (*CapCd) Descriptor deprecated 

func (*CapCd) Descriptor() ([]byte, []int)

Deprecated: Use CapCd.ProtoReflect.Descriptor instead.

func (*CapCd) GetPath 

func (x *CapCd) GetPath() string

func (*CapCd) ProtoMessage 

func (*CapCd) ProtoMessage()

func (*CapCd) ProtoReflect 

func (x *CapCd) ProtoReflect() protoreflect.Message

func (*CapCd) Reset 

func (x *CapCd) Reset()

func (*CapCd) String 

func (x *CapCd) String() string

type CapCp 

type CapCp struct {

	// Source path to file or directory
	Src string `protobuf:"bytes,1,opt,name=src,proto3" json:"src,omitempty"`
	// Destination path to file or directory
	Dst string `protobuf:"bytes,2,opt,name=dst,proto3" json:"dst,omitempty"`
	// contains filtered or unexported fields
}

Copy capability: Copy files or directories specified with source and destination pathes

func (*CapCp) Descriptor deprecated 

func (*CapCp) Descriptor() ([]byte, []int)

Deprecated: Use CapCp.ProtoReflect.Descriptor instead.

func (*CapCp) GetDst 

func (x *CapCp) GetDst() string

func (*CapCp) GetSrc 

func (x *CapCp) GetSrc() string

func (*CapCp) ProtoMessage 

func (*CapCp) ProtoMessage()

func (*CapCp) ProtoReflect 

func (x *CapCp) ProtoReflect() protoreflect.Message

func (*CapCp) Reset 

func (x *CapCp) Reset()

func (*CapCp) String 

func (x *CapCp) String() string

type CapDestroy 

type CapDestroy struct {
	// contains filtered or unexported fields
}

Desctruction capability: Destroy agent itself (with removing of executable and self killing)

func (*CapDestroy) Descriptor deprecated 

func (*CapDestroy) Descriptor() ([]byte, []int)

Deprecated: Use CapDestroy.ProtoReflect.Descriptor instead.

func (*CapDestroy) ProtoMessage 

func (*CapDestroy) ProtoMessage()

func (*CapDestroy) ProtoReflect 

func (x *CapDestroy) ProtoReflect() protoreflect.Message

func (*CapDestroy) Reset 

func (x *CapDestroy) Reset()

func (*CapDestroy) String 

func (x *CapDestroy) String() string

type CapDownload 

type CapDownload struct {

	// Path to file or directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

File download capability: Download file from target FS specified by path

func (*CapDownload) Descriptor deprecated 

func (*CapDownload) Descriptor() ([]byte, []int)

Deprecated: Use CapDownload.ProtoReflect.Descriptor instead.

func (*CapDownload) GetPath 

func (x *CapDownload) GetPath() string

func (*CapDownload) ProtoMessage 

func (*CapDownload) ProtoMessage()

func (*CapDownload) ProtoReflect 

func (x *CapDownload) ProtoReflect() protoreflect.Message

func (*CapDownload) Reset 

func (x *CapDownload) Reset()

func (*CapDownload) String 

func (x *CapDownload) String() string

type CapExec 

type CapExec struct {

	// Command to execute (may be absolute path)
	Cmd string `protobuf:"bytes,1,opt,name=cmd,proto3" json:"cmd,omitempty"`
	// Arguments to execute command with
	Args string `protobuf:"bytes,2,opt,name=args,proto3" json:"args,omitempty"`
	// contains filtered or unexported fields
}

Execute command capability: Execute command with arguments on target OS

func (*CapExec) Descriptor deprecated 

func (*CapExec) Descriptor() ([]byte, []int)

Deprecated: Use CapExec.ProtoReflect.Descriptor instead.

func (*CapExec) GetArgs 

func (x *CapExec) GetArgs() string

func (*CapExec) GetCmd 

func (x *CapExec) GetCmd() string

func (*CapExec) ProtoMessage 

func (*CapExec) ProtoMessage()

func (*CapExec) ProtoReflect 

func (x *CapExec) ProtoReflect() protoreflect.Message

func (*CapExec) Reset 

func (x *CapExec) Reset()

func (*CapExec) String 

func (x *CapExec) String() string

type CapExecAssembly 

type CapExecAssembly struct {

	// Arguments to execute .NET binary with
	Args string `protobuf:"bytes,1,opt,name=args,proto3" json:"args,omitempty"`
	// Blob with .NET binary program
	Blob []byte `protobuf:"bytes,2,opt,name=blob,proto3" json:"blob,omitempty"`
	// contains filtered or unexported fields
}

.NET in-memory execution capability: Execute .NET binary with arguments in CLR runtime in agent's process memory

func (*CapExecAssembly) Descriptor deprecated 

func (*CapExecAssembly) Descriptor() ([]byte, []int)

Deprecated: Use CapExecAssembly.ProtoReflect.Descriptor instead.

func (*CapExecAssembly) GetArgs 

func (x *CapExecAssembly) GetArgs() string

func (*CapExecAssembly) GetBlob 

func (x *CapExecAssembly) GetBlob() []byte

func (*CapExecAssembly) ProtoMessage 

func (*CapExecAssembly) ProtoMessage()

func (*CapExecAssembly) ProtoReflect 

func (x *CapExecAssembly) ProtoReflect() protoreflect.Message

func (*CapExecAssembly) Reset 

func (x *CapExecAssembly) Reset()

func (*CapExecAssembly) String 

func (x *CapExecAssembly) String() string

type CapExecDetach 

type CapExecDetach struct {

	// Command to execute (may be absolute path)
	Cmd string `protobuf:"bytes,1,opt,name=cmd,proto3" json:"cmd,omitempty"`
	// Arguments to execute command with
	Args string `protobuf:"bytes,2,opt,name=args,proto3" json:"args,omitempty"`
	// contains filtered or unexported fields
}

Execute detached command capability: Execute detached command with arguments on target OS (no output will be provided)

func (*CapExecDetach) Descriptor deprecated 

func (*CapExecDetach) Descriptor() ([]byte, []int)

Deprecated: Use CapExecDetach.ProtoReflect.Descriptor instead.

func (*CapExecDetach) GetArgs 

func (x *CapExecDetach) GetArgs() string

func (*CapExecDetach) GetCmd 

func (x *CapExecDetach) GetCmd() string

func (*CapExecDetach) ProtoMessage 

func (*CapExecDetach) ProtoMessage()

func (*CapExecDetach) ProtoReflect 

func (x *CapExecDetach) ProtoReflect() protoreflect.Message

func (*CapExecDetach) Reset 

func (x *CapExecDetach) Reset()

func (*CapExecDetach) String 

func (x *CapExecDetach) String() string

type CapExit 

type CapExit struct {
	// contains filtered or unexported fields
}

Exit capability: Stop agent's process

func (*CapExit) Descriptor deprecated 

func (*CapExit) Descriptor() ([]byte, []int)

Deprecated: Use CapExit.ProtoReflect.Descriptor instead.

func (*CapExit) ProtoMessage 

func (*CapExit) ProtoMessage()

func (*CapExit) ProtoReflect 

func (x *CapExit) ProtoReflect() protoreflect.Message

func (*CapExit) Reset 

func (x *CapExit) Reset()

func (*CapExit) String 

func (x *CapExit) String() string

type CapJobkill 

type CapJobkill struct {

	// Job ID to kill
	Id uint64 `protobuf:"varint,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

Kill job capability: Kill active job on agent specified by its ID

func (*CapJobkill) Descriptor deprecated 

func (*CapJobkill) Descriptor() ([]byte, []int)

Deprecated: Use CapJobkill.ProtoReflect.Descriptor instead.

func (*CapJobkill) GetId 

func (x *CapJobkill) GetId() uint64

func (*CapJobkill) ProtoMessage 

func (*CapJobkill) ProtoMessage()

func (*CapJobkill) ProtoReflect 

func (x *CapJobkill) ProtoReflect() protoreflect.Message

func (*CapJobkill) Reset 

func (x *CapJobkill) Reset()

func (*CapJobkill) String 

func (x *CapJobkill) String() string

type CapJobs 

type CapJobs struct {
	// contains filtered or unexported fields
}

Jobs capability: Get active jobs (other capabilities execution flows) on agent

func (*CapJobs) Descriptor deprecated 

func (*CapJobs) Descriptor() ([]byte, []int)

Deprecated: Use CapJobs.ProtoReflect.Descriptor instead.

func (*CapJobs) ProtoMessage 

func (*CapJobs) ProtoMessage()

func (*CapJobs) ProtoReflect 

func (x *CapJobs) ProtoReflect() protoreflect.Message

func (*CapJobs) Reset 

func (x *CapJobs) Reset()

func (*CapJobs) String 

func (x *CapJobs) String() string

type CapKill 

type CapKill struct {

	// Process ID to kill
	Pid uint64 `protobuf:"varint,1,opt,name=pid,proto3" json:"pid,omitempty"`
	// contains filtered or unexported fields
}

Stop process capability: Kill process specified by process ID (PID)

func (*CapKill) Descriptor deprecated 

func (*CapKill) Descriptor() ([]byte, []int)

Deprecated: Use CapKill.ProtoReflect.Descriptor instead.

func (*CapKill) GetPid 

func (x *CapKill) GetPid() uint64

func (*CapKill) ProtoMessage 

func (*CapKill) ProtoMessage()

func (*CapKill) ProtoReflect 

func (x *CapKill) ProtoReflect() protoreflect.Message

func (*CapKill) Reset 

func (x *CapKill) Reset()

func (*CapKill) String 

func (x *CapKill) String() string

type CapLs 

type CapLs struct {

	// Path to file or directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

Listing capability: Get list of files and directories specified by path

func (*CapLs) Descriptor deprecated 

func (*CapLs) Descriptor() ([]byte, []int)

Deprecated: Use CapLs.ProtoReflect.Descriptor instead.

func (*CapLs) GetPath 

func (x *CapLs) GetPath() string

func (*CapLs) ProtoMessage 

func (*CapLs) ProtoMessage()

func (*CapLs) ProtoReflect 

func (x *CapLs) ProtoReflect() protoreflect.Message

func (*CapLs) Reset 

func (x *CapLs) Reset()

func (*CapLs) String 

func (x *CapLs) String() string

type CapMkdir 

type CapMkdir struct {

	// Path to directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

Create directory capability: Create directory on target FS specified by path

func (*CapMkdir) Descriptor deprecated 

func (*CapMkdir) Descriptor() ([]byte, []int)

Deprecated: Use CapMkdir.ProtoReflect.Descriptor instead.

func (*CapMkdir) GetPath 

func (x *CapMkdir) GetPath() string

func (*CapMkdir) ProtoMessage 

func (*CapMkdir) ProtoMessage()

func (*CapMkdir) ProtoReflect 

func (x *CapMkdir) ProtoReflect() protoreflect.Message

func (*CapMkdir) Reset 

func (x *CapMkdir) Reset()

func (*CapMkdir) String 

func (x *CapMkdir) String() string

type CapMv 

type CapMv struct {

	// Source path to file or directory
	Src string `protobuf:"bytes,1,opt,name=src,proto3" json:"src,omitempty"`
	// Destination path to file or directory
	Dst string `protobuf:"bytes,2,opt,name=dst,proto3" json:"dst,omitempty"`
	// contains filtered or unexported fields
}

Copy capability: Move files or directories specified with source and destination pathes

func (*CapMv) Descriptor deprecated 

func (*CapMv) Descriptor() ([]byte, []int)

Deprecated: Use CapMv.ProtoReflect.Descriptor instead.

func (*CapMv) GetDst 

func (x *CapMv) GetDst() string

func (*CapMv) GetSrc 

func (x *CapMv) GetSrc() string

func (*CapMv) ProtoMessage 

func (*CapMv) ProtoMessage()

func (*CapMv) ProtoReflect 

func (x *CapMv) ProtoReflect() protoreflect.Message

func (*CapMv) Reset 

func (x *CapMv) Reset()

func (*CapMv) String 

func (x *CapMv) String() string

type CapPause 

type CapPause struct {

	// Number of seconds to pause agent's execution
	Pause uint32 `protobuf:"varint,1,opt,name=pause,proto3" json:"pause,omitempty"`
	// contains filtered or unexported fields
}

Pause capability: Pause agent's process execution on specified value (in seconds)

func (*CapPause) Descriptor deprecated 

func (*CapPause) Descriptor() ([]byte, []int)

Deprecated: Use CapPause.ProtoReflect.Descriptor instead.

func (*CapPause) GetPause 

func (x *CapPause) GetPause() uint32

func (*CapPause) ProtoMessage 

func (*CapPause) ProtoMessage()

func (*CapPause) ProtoReflect 

func (x *CapPause) ProtoReflect() protoreflect.Message

func (*CapPause) Reset 

func (x *CapPause) Reset()

func (*CapPause) String 

func (x *CapPause) String() string

type CapPpid 

type CapPpid struct {

	// Value to spood PPID on. In case of rollback can be used special value as 0 (must be handled by agent)
	Ppid uint64 `protobuf:"varint,1,opt,name=ppid,proto3" json:"ppid,omitempty"`
	// contains filtered or unexported fields
}

Spoof process PID capability: Spoof PPID on agent's process on specified value. For rollback you can implement logic of special value, e.g. 0

func (*CapPpid) Descriptor deprecated 

func (*CapPpid) Descriptor() ([]byte, []int)

Deprecated: Use CapPpid.ProtoReflect.Descriptor instead.

func (*CapPpid) GetPpid 

func (x *CapPpid) GetPpid() uint64

func (*CapPpid) ProtoMessage 

func (*CapPpid) ProtoMessage()

func (*CapPpid) ProtoReflect 

func (x *CapPpid) ProtoReflect() protoreflect.Message

func (*CapPpid) Reset 

func (x *CapPpid) Reset()

func (*CapPpid) String 

func (x *CapPpid) String() string

type CapPs 

type CapPs struct {
	// contains filtered or unexported fields
}

Process list capability: Get list of process on target OS

func (*CapPs) Descriptor deprecated 

func (*CapPs) Descriptor() ([]byte, []int)

Deprecated: Use CapPs.ProtoReflect.Descriptor instead.

func (*CapPs) ProtoMessage 

func (*CapPs) ProtoMessage()

func (*CapPs) ProtoReflect 

func (x *CapPs) ProtoReflect() protoreflect.Message

func (*CapPs) Reset 

func (x *CapPs) Reset()

func (*CapPs) String 

func (x *CapPs) String() string

type CapPwd 

type CapPwd struct {
	// contains filtered or unexported fields
}

Process working directory capability: Get current agent's process working directory

func (*CapPwd) Descriptor deprecated 

func (*CapPwd) Descriptor() ([]byte, []int)

Deprecated: Use CapPwd.ProtoReflect.Descriptor instead.

func (*CapPwd) ProtoMessage 

func (*CapPwd) ProtoMessage()

func (*CapPwd) ProtoReflect 

func (x *CapPwd) ProtoReflect() protoreflect.Message

func (*CapPwd) Reset 

func (x *CapPwd) Reset()

func (*CapPwd) String 

func (x *CapPwd) String() string

type CapRm 

type CapRm struct {

	// Path to file or directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// contains filtered or unexported fields
}

Remove files/directories capability: Remove files/directories on target FS specified by path

func (*CapRm) Descriptor deprecated 

func (*CapRm) Descriptor() ([]byte, []int)

Deprecated: Use CapRm.ProtoReflect.Descriptor instead.

func (*CapRm) GetPath 

func (x *CapRm) GetPath() string

func (*CapRm) ProtoMessage 

func (*CapRm) ProtoMessage()

func (*CapRm) ProtoReflect 

func (x *CapRm) ProtoReflect() protoreflect.Message

func (*CapRm) Reset 

func (x *CapRm) Reset()

func (*CapRm) String 

func (x *CapRm) String() string

type CapShell 

type CapShell struct {

	// Command string to execute in shell
	Cmd string `protobuf:"bytes,1,opt,name=cmd,proto3" json:"cmd,omitempty"`
	// contains filtered or unexported fields
}

Execute shell command capability: Execute shell command on target OS (/bin/sh, powershell.exe, etc)

func (*CapShell) Descriptor deprecated 

func (*CapShell) Descriptor() ([]byte, []int)

Deprecated: Use CapShell.ProtoReflect.Descriptor instead.

func (*CapShell) GetCmd 

func (x *CapShell) GetCmd() string

func (*CapShell) ProtoMessage 

func (*CapShell) ProtoMessage()

func (*CapShell) ProtoReflect 

func (x *CapShell) ProtoReflect() protoreflect.Message

func (*CapShell) Reset 

func (x *CapShell) Reset()

func (*CapShell) String 

func (x *CapShell) String() string

type CapShellcodeInjection 

type CapShellcodeInjection struct {

	// PID to inject shellcode in
	Pid uint64 `protobuf:"varint,1,opt,name=pid,proto3" json:"pid,omitempty"`
	// Shellcode blob
	Blob []byte `protobuf:"bytes,2,opt,name=blob,proto3" json:"blob,omitempty"`
	// contains filtered or unexported fields
}

Shellcode injection capability: Inject and execute shellcode in specified PID

func (*CapShellcodeInjection) Descriptor deprecated 

func (*CapShellcodeInjection) Descriptor() ([]byte, []int)

Deprecated: Use CapShellcodeInjection.ProtoReflect.Descriptor instead.

func (*CapShellcodeInjection) GetBlob 

func (x *CapShellcodeInjection) GetBlob() []byte

func (*CapShellcodeInjection) GetPid 

func (x *CapShellcodeInjection) GetPid() uint64

func (*CapShellcodeInjection) ProtoMessage 

func (*CapShellcodeInjection) ProtoMessage()

func (*CapShellcodeInjection) ProtoReflect 

func (x *CapShellcodeInjection) ProtoReflect() protoreflect.Message

func (*CapShellcodeInjection) Reset 

func (x *CapShellcodeInjection) Reset()

func (*CapShellcodeInjection) String 

func (x *CapShellcodeInjection) String() string

type CapSleep 

type CapSleep struct {

	// Sleep value in seconds
	Sleep uint32 `protobuf:"varint,1,opt,name=sleep,proto3" json:"sleep,omitempty"`
	// Jitter value in range 1-99
	Jitter uint32 `protobuf:"varint,2,opt,name=jitter,proto3" json:"jitter,omitempty"`
	// contains filtered or unexported fields
}

Sleep capability: Change sleep and jitter values on agent prorcess

func (*CapSleep) Descriptor deprecated 

func (*CapSleep) Descriptor() ([]byte, []int)

Deprecated: Use CapSleep.ProtoReflect.Descriptor instead.

func (*CapSleep) GetJitter 

func (x *CapSleep) GetJitter() uint32

func (*CapSleep) GetSleep 

func (x *CapSleep) GetSleep() uint32

func (*CapSleep) ProtoMessage 

func (*CapSleep) ProtoMessage()

func (*CapSleep) ProtoReflect 

func (x *CapSleep) ProtoReflect() protoreflect.Message

func (*CapSleep) Reset 

func (x *CapSleep) Reset()

func (*CapSleep) String 

func (x *CapSleep) String() string

type CapUpload 

type CapUpload struct {

	// Path to file or directory
	Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
	// Blob to upload
	Blob []byte `protobuf:"bytes,2,opt,name=blob,proto3" json:"blob,omitempty"`
	// contains filtered or unexported fields
}

File upload capability: Upload file on target FS specified by path

func (*CapUpload) Descriptor deprecated 

func (*CapUpload) Descriptor() ([]byte, []int)

Deprecated: Use CapUpload.ProtoReflect.Descriptor instead.

func (*CapUpload) GetBlob 

func (x *CapUpload) GetBlob() []byte

func (*CapUpload) GetPath 

func (x *CapUpload) GetPath() string

func (*CapUpload) ProtoMessage 

func (*CapUpload) ProtoMessage()

func (*CapUpload) ProtoReflect 

func (x *CapUpload) ProtoReflect() protoreflect.Message

func (*CapUpload) Reset 

func (x *CapUpload) Reset()

func (*CapUpload) String 

func (x *CapUpload) String() string

type CapWhoami 

type CapWhoami struct {
	// contains filtered or unexported fields
}

Whoami capability: Get information about user under which agent's process working

func (*CapWhoami) Descriptor deprecated 

func (*CapWhoami) Descriptor() ([]byte, []int)

Deprecated: Use CapWhoami.ProtoReflect.Descriptor instead.

func (*CapWhoami) ProtoMessage 

func (*CapWhoami) ProtoMessage()

func (*CapWhoami) ProtoReflect 

func (x *CapWhoami) ProtoReflect() protoreflect.Message

func (*CapWhoami) Reset 

func (x *CapWhoami) Reset()

func (*CapWhoami) String 

func (x *CapWhoami) String() string

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.