Covenant - A .Net Command Too Command Framework For Scarlet Teamers
Covenant is a .NET command as well as command framework that aims to highlight the assail surface of .NET, brand the usage of offensive .NET tradecraft easier, as well as serve every bit a collaborative command as well as command platform for cerise teamers.
Covenant is an ASP.NET Core, cross-platform application that includes a web-based interface that allows for multi-user collaboration.
Quick-Start Guide
Please run into the Installation as well as Startup conduct to larn started amongst Covenant!
The Wiki documents most of Covenant's substance features as well as how to usage them.
Features
Covenant has several fundamental features that give-up the ghost far useful as well as differentiate it from other command as well as command frameworks:
- Intuitive Interface - Covenant provides an intuitive spider web application to easily run a collaborative red team operation.
- Multi-Platform - Covenant targets .NET Core, which is multi-platform. This allows Covenant to run natively on Linux, MacOS, as well as Windows platforms. Additionally, Covenant has docker support, allowing it to run inside a container on whatever organisation that has docker installed.
- Multi-User - Covenant supports multi-user collaboration. The powerfulness to collaborate has give-up the ghost crucial for effective cerise squad operations. Many users tin interact amongst the same Covenant server as well as operate independently or collaboratively.
- API Driven - Covenant is driven yesteryear an API that enables multi-user collaboration as well as is easily extendible. Additionally, Covenant includes a Swagger UI that makes evolution as well as debugging easier as well as to a greater extent than convenient.
- Listener Profiles - Covenant supports listener “profiles” that command how the network communication betwixt Grunt implants as well as Covenant listeners await on the wire.
- Encrypted Key Exchange - Covenant implements an encrypted fundamental telephone commutation betwixt Grunt implants as well as Covenant listeners that is largely based on a like telephone commutation inwards the Empire project, inwards add-on to optional SSL encryption. This achieves the cryptographic holding of frontward secrecy betwixt Grunt implants.
- Dynamic Compilation - Covenant uses the Roslyn API for dynamic C# compilation. Every fourth dimension a novel Grunt is generated or a novel chore is assigned, the relevant code is recompiled as well as obfuscated amongst ConfuserEx, avoiding totally static payloads. Covenant reuses much of the compilation code from the SharpGen project, which I described inwards much to a greater extent than item inwards a previous post.
- Inline C# Execution - Covenant borrows code as well as ideas from both the SharpGen as well as SharpShell projects to permit operators to execute C# one-liners on Grunt implants. This allows for like functionality to that described inwards the SharpShell post, simply allows the one-liners to last executed on remote implants.
- Tracking Indicators - Covenant tracks “indicators” throughout an operation, as well as summarizes them inwards the Indicators menu. This allows an operator to comport actions that are tracked throughout an functioning as well as easily summarize those actions to the blue team during or at the halt of an assessment for deconfliction as well as educational purposes. This characteristic is nonetheless inwards it’s infancy as well as nonetheless has room for improvement.
- Developed inwards C# - Personally, I bask developing inwards C#, which may non last a surprise for anyone that has read my latest blogs or tools. Not everyone mightiness concord that evolution inwards C# is ideal, simply hopefully everyone agrees that it is prissy to convey all components of the framework written inwards the same language. I’ve establish it really convenient to write the server, client, as well as implant all inwards the same language. This may non last a truthful “feature”, simply hopefully it allows others to contribute to the projection fairly easily.
Questions as well as Discussion
Have questions or desire to chat to a greater extent than nearly Covenant? Join the #Covenant channel inwards the BloodHound Gang Slack.
