Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/leeberg/BlueCommand

Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard
https://github.com/leeberg/BlueCommand

cybersecurity dashboard empire powershell

Last synced: 3 months ago
JSON representation

Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard

Host: GitHub
URL: https://github.com/leeberg/BlueCommand
Owner: leeberg
Created: 2018-10-09T17:49:05.000Z (about 6 years ago)
Default Branch: master
Last Pushed: 2019-04-19T03:19:35.000Z (over 5 years ago)
Last Synced: 2024-05-02T19:20:08.782Z (6 months ago)
Topics: cybersecurity, dashboard, empire, powershell
Language: PowerShell
Homepage:
Size: 4.48 MB
Stars: 105
Watchers: 9
Forks: 14
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - leeberg/BlueCommand - Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard (PowerShell)

README

        BlueCommand 🌌

==================

**BlueCommand** is a dashboard and tooling front-end for [PowerShell Empire](https://github.com/EmpireProject/Empire) using [PowerShell Universal Dashboard](https://universaldashboard.io/) from [Adam Driscoll](https://github.com/adamdriscoll)

![](./img/HomePage.png)

**WARNING**: This project does not nearly scratch the surface of interacting with all the capababilites of PowerShell Empire. This was a project to help my learn / play around with PowerShell Empire and its' REST API. You will be much better served in life but actually learning how to use PowerShell Empire :)

# Features

* Web Dashboard / Controller for PowerShell Empire!

* Utilizes the Empire REST API and [PowerShell Universal Dashboard](https://universaldashboard.io/)

* [PowerShell Empire](https://www.powershellempire.com/) Integration

* Rest Integration to retrieve Empire Instance Information (Agents, Modules Downloads)

* Rest Integration to Execute Modules on Agents.

* SCP to Download Agent Results / Downloads

**Searching and Executing Modules on Empire Agents**

![](./img/ExecuteModule.gif)

**Retrieving Agent Downloads**

![](./img/AgentDownload.gif)

# Getting Started

## Prereqs

1. Install [Universal Dashboard](https://universaldashboard.io/) ``Install-Module UniversalDashboard -AccecptLicense``

2. Install [PoshSSH](https://github.com/darkoperator/Posh-SSH) ``Install-Module -Name Posh-SSH``

   * PoshSSH is used to run SCP commands to extract agent artifacts.

3. Install [PowerShell Credential Manager](https://github.com/davotronic5000/PowerShell_Credential_Manager) ``Install-Module -Name CredentialManager``

   * Credential Manager allows use to easily use Windows Credential Manager to auth to our Empire Server

4. Setup [PowerShell Empire](https://www.powershellempire.com/)

  + Run Empire with --rest command

  + Generate a Listener / Stager

  + Deploy Agents

  + Make a Note of Rest Key and Empire Server IP.

## Usage

1. Populate your environment variables in the ``start.ps1`` Script

2. Run the Start Script

3. Connect to your Empire Server on the Empire Configuration Page using your Empire Server IP, and Rest API Key.

    * ![](./img/empire_rest.png) 

4.  BlueCommand will try and utilze POSH-SSH to SCP Download the Empire Agents Downloads/Logs - This requires a stored a "Generic Credential" in your windows credential manager to facilitate this. ![](./img/credential_manager.png)