Skip to content

Latest commit

 

History

History
99 lines (84 loc) · 4.19 KB

CHANGELOG.md

File metadata and controls

99 lines (84 loc) · 4.19 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Unreleased

Added

  • Added FreeModule to SharpSploit.Execution.ManualMap.Map (credit @TheWover)
  • Added option to CallMappedDllModuleExport to not invoke EntryPoint (credit @TheWover)
  • Added SharpSploit.Evasion.ETW class, ETWEventWrite patch (credit @salu90)

Fixed

  • Fixed rewriting IAT of modules with no import table (credit @TheWover)

[v1.6] - 2020-06-08

Added

  • Added ManualMapping functions (credit @b33f, @TheWover)
  • Added ModuleOverloading functions (credit @b33f)
  • Added Syscall stub function (credit @b33f)
  • Added SharpSploit.Execution.Injection namespace (credit @TheWover)
  • Added SharpSploit.Pivoting namespace, reverse port forwarding (credit @rasta-mouse)
  • Added error/verbose output to PowerShellExecute function

v1.5 - 2019-12-27

Added

  • Added Evasion namespace, Amsi class, PatchAmsiScanBuffer function (credit @rasta-mouse)
  • Added Is64Bit Utility property (credit @rasta-mouse)
  • Added Is64BitProcess Host function (credit @TheWover)
  • Added GetProcessorArchitecture, GetParentProcess, GetProcessOwner, IsWow64, and supporting P/Invoke signatures (credit @rasta-mouse)
  • Added Keylogger class (credit @checkymander)
  • Added SCM class, PowerShellRemoting class, Host.GetDacl function (credit @rasta-mouse)
  • Added NetShareEnum functionality for Share Enumeration (credit @checkymander)
  • Added in-memory export parsing (credit @b33f)
  • Added SharpSploit.Execution.PlatformInvoke namespace
  • Added CreateProcessWithToken function (credit @001SPARTaN)
  • Added DynamicInvoke.Generic.GetLibraryAddress() and DynamicInvoke.Generic.GetExportAddress() by ordinal (credit @b33f)
  • Added DynamicInvoke.Generic.GetLibraryAddress() and DynamicInvoke.Generic.GetExportAddress() by MD5 hash (credit @b33f)
  • Added DynamicInvoke.Native.NtAllocateVirtualMemory, NtFreeVirtualMemory, NtQueryVirtualMemory, GetFilenameFromMemoryPointer (credit @b33f)

Changed

  • Improved DynamicInvoke library (credit @TheWover)
  • Removed GetProcessListing use of WMI to obtain ppid (credit @rasta-mouse)
  • Improved GetProcessListing to include ppid, architecture, owner, and sort by PID (credit @rasta-mouse)
  • Improved SharpSploitResultList ToString() display
  • Moved PInvoke function signatures to PlatformInvoke namespace, enums/structs shared between PlatformInvoke and DynamicInvoke
  • Updated powerkatz dlls, fixed LsaSecrets/LsaCache/SamDump mimikatz shortcuts
  • Update shell execution commands for configurable UseShellExecute property
  • Updated PowerShellRemoting to return command output (credit @rasta-mouse)

v1.4 - 2019-08-05

Added

  • Added GetDirectoryListing of a specific path
  • Added stderr to output of ShellExecute functions
  • Added ShellCmdExecute function
  • Added registry class with improved read/write functions
  • Added remote registry functions
  • Added GPO enumeration functions (credit @panagioto)
  • Added Autorun, Startup, WMI persistence functions (credit @rasta-mouse)
  • Added DynamicInvoke namespace (credit @TheWover)

Changed

  • Updated mimikatz binaries
  • Changed mimikatz function to load in new thread, free input/output pointers
  • Updated registry tests

Fixed

  • Fixed XML warning, removed angle brackets in comment

v1.3 - 2019-03-03

Fixed

  • Fixed SharpSploit.Enumeration.Host.ChangeCurrentDirectory() to accept absolute paths
  • Fixed SharpSploit.Enumeration.Host.GetProcessList() retrieves valid ppid values

v1.2 - 2019-02-12

Added

  • Added CHANGELOG.md
  • Added Assembly EntryPoint execution

v1.1 - 2018-11-03

Added

  • Added DCOM lateral movement
  • Added nuget package

Changed

  • Updated README

Fixed

  • Fixed Domain warnings
  • Fixed XML path
  • Fixed Mimikatz quoting

v1.0 - 2018-09-20

  • Initial release