├── .gitignore
├── EmpireAPIWrapper
    ├── LICENSE
    ├── README.md
    ├── __init__.py
    ├── const.py
    ├── exceptions.py
    ├── setup.py
    ├── utils.py
    └── wrapper.py
├── README.md
├── autocomplete
    ├── __init__.py
    ├── empire.py
    ├── generate_msf_autocomplete.py
    ├── msf_exploit.py
    ├── msf_payload.py
    └── msf_post.py
├── c2_settings.py
├── emailtest.py
├── lateral_RCE_example.py
├── local_EoP_example.py
├── pymetasploit
    ├── __init__.py
    ├── msfconsole.py
    ├── msfrpc.py
    ├── msfrpcdHandler.py
    └── utils.py
├── screenshots
    ├── ALC-3tenetsModel.png
    ├── ALCmatrix.png
    ├── autocomplete.png
    ├── empireScripting.gif
    ├── moduledesc.png
    ├── procedureVStechniques.png
    ├── requiredoptions.png
    └── ttp.png
├── stage1
    ├── __init__.py
    ├── extermal_reconn
    │   └── __init__.py
    └── generate_payloads
    │   ├── __init__.py
    │   └── windows
    │       └── __init__.py
├── stage2
    ├── __init__.py
    ├── code_execution
    │   ├── __init__.py
    │   └── windows
    │   │   ├── __init__.py
    │   │   └── applocker_bypass.py
    ├── deliver_payload
    │   ├── __init__.py
    │   └── windows
    │   │   ├── __init__.py
    │   │   └── technique1.py
    ├── external_c2
    │   ├── __init__.py
    │   ├── empire_get_timestamp.py
    │   ├── empire_wait_for_agent.py
    │   ├── msf_get_timestamp.py
    │   └── msf_wait_for_session.py
    └── install_payload
    │   ├── __init__.py
    │   └── windows
    │       ├── __init__.py
    │       ├── empire_dotnet_clr_persistence.py
    │       └── empire_install_outlook_VSTOc2.py
├── stage3
    ├── __init__.py
    ├── capture_credentials
    │   ├── __init__.py
    │   └── windows
    │   │   ├── __init__.py
    │   │   ├── empire_capture_wifi_creds.py
    │   │   └── empire_spoof_outlook_login.py
    ├── escalate_privilege
    │   ├── __init__.py
    │   └── windows
    │   │   ├── __init__.py
    │   │   ├── cve2017_0213.py
    │   │   ├── empire_bypassUAC.py
    │   │   ├── empire_localEternalBlue.py
    │   │   └── msf_eternal_blue.py
    ├── internal_c2
    │   ├── __init__.py
    │   └── windows
    │   │   ├── __init__.py
    │   │   ├── msf_autoroute.py
    │   │   └── msf_setup_portfwd.py
    └── internal_reconn
    │   ├── __init__.py
    │   └── windows
    │       ├── __init__.py
    │       ├── empire_find_network_printer.py
    │       ├── empire_is_user_admin.py
    │       ├── msf_eternalblue_scan.py
    │       ├── msf_ifconfig.py
    │       └── msf_smbv2_scan.py
├── stage4
    ├── __init__.py
    ├── empire_stop_logging.py
    └── leak_print_jobs.py
├── test_empire2.2.py
└── test_pymsf.py


/.gitignore:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/.gitignore


--------------------------------------------------------------------------------
/EmpireAPIWrapper/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/LICENSE


--------------------------------------------------------------------------------
/EmpireAPIWrapper/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/README.md


--------------------------------------------------------------------------------
/EmpireAPIWrapper/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/__init__.py


--------------------------------------------------------------------------------
/EmpireAPIWrapper/const.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/const.py


--------------------------------------------------------------------------------
/EmpireAPIWrapper/exceptions.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/exceptions.py


--------------------------------------------------------------------------------
/EmpireAPIWrapper/setup.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/setup.py


--------------------------------------------------------------------------------
/EmpireAPIWrapper/utils.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/utils.py


--------------------------------------------------------------------------------
/EmpireAPIWrapper/wrapper.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/EmpireAPIWrapper/wrapper.py


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/README.md


--------------------------------------------------------------------------------
/autocomplete/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/autocomplete/empire.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/autocomplete/empire.py


--------------------------------------------------------------------------------
/autocomplete/generate_msf_autocomplete.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/autocomplete/generate_msf_autocomplete.py


--------------------------------------------------------------------------------
/autocomplete/msf_exploit.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/autocomplete/msf_exploit.py


--------------------------------------------------------------------------------
/autocomplete/msf_payload.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/autocomplete/msf_payload.py


--------------------------------------------------------------------------------
/autocomplete/msf_post.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/autocomplete/msf_post.py


--------------------------------------------------------------------------------
/c2_settings.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/c2_settings.py


--------------------------------------------------------------------------------
/emailtest.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/emailtest.py


--------------------------------------------------------------------------------
/lateral_RCE_example.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/lateral_RCE_example.py


--------------------------------------------------------------------------------
/local_EoP_example.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/local_EoP_example.py


--------------------------------------------------------------------------------
/pymetasploit/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/pymetasploit/__init__.py


--------------------------------------------------------------------------------
/pymetasploit/msfconsole.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/pymetasploit/msfconsole.py


--------------------------------------------------------------------------------
/pymetasploit/msfrpc.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/pymetasploit/msfrpc.py


--------------------------------------------------------------------------------
/pymetasploit/msfrpcdHandler.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/pymetasploit/msfrpcdHandler.py


--------------------------------------------------------------------------------
/pymetasploit/utils.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/pymetasploit/utils.py


--------------------------------------------------------------------------------
/screenshots/ALC-3tenetsModel.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/ALC-3tenetsModel.png


--------------------------------------------------------------------------------
/screenshots/ALCmatrix.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/ALCmatrix.png


--------------------------------------------------------------------------------
/screenshots/autocomplete.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/autocomplete.png


--------------------------------------------------------------------------------
/screenshots/empireScripting.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/empireScripting.gif


--------------------------------------------------------------------------------
/screenshots/moduledesc.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/moduledesc.png


--------------------------------------------------------------------------------
/screenshots/procedureVStechniques.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/procedureVStechniques.png


--------------------------------------------------------------------------------
/screenshots/requiredoptions.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/requiredoptions.png


--------------------------------------------------------------------------------
/screenshots/ttp.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/screenshots/ttp.png


--------------------------------------------------------------------------------
/stage1/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage1/extermal_reconn/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage1/generate_payloads/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage1/generate_payloads/windows/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage2/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques for various OS"""


--------------------------------------------------------------------------------
/stage2/code_execution/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques to execute codes"""


--------------------------------------------------------------------------------
/stage2/code_execution/windows/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques to execute windows codes"""


--------------------------------------------------------------------------------
/stage2/code_execution/windows/applocker_bypass.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/code_execution/windows/applocker_bypass.py


--------------------------------------------------------------------------------
/stage2/deliver_payload/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage2/deliver_payload/windows/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques for Windows"""


--------------------------------------------------------------------------------
/stage2/deliver_payload/windows/technique1.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/deliver_payload/windows/technique1.py


--------------------------------------------------------------------------------
/stage2/external_c2/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage2/external_c2/empire_get_timestamp.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/external_c2/empire_get_timestamp.py


--------------------------------------------------------------------------------
/stage2/external_c2/empire_wait_for_agent.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/external_c2/empire_wait_for_agent.py


--------------------------------------------------------------------------------
/stage2/external_c2/msf_get_timestamp.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/external_c2/msf_get_timestamp.py


--------------------------------------------------------------------------------
/stage2/external_c2/msf_wait_for_session.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/external_c2/msf_wait_for_session.py


--------------------------------------------------------------------------------
/stage2/install_payload/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques to execute codes"""


--------------------------------------------------------------------------------
/stage2/install_payload/windows/__init__.py:
--------------------------------------------------------------------------------
1 | """Stage 2 techniques to execute codes"""


--------------------------------------------------------------------------------
/stage2/install_payload/windows/empire_dotnet_clr_persistence.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/install_payload/windows/empire_dotnet_clr_persistence.py


--------------------------------------------------------------------------------
/stage2/install_payload/windows/empire_install_outlook_VSTOc2.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage2/install_payload/windows/empire_install_outlook_VSTOc2.py


--------------------------------------------------------------------------------
/stage3/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/capture_credentials/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/capture_credentials/windows/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/capture_credentials/windows/empire_capture_wifi_creds.py:
--------------------------------------------------------------------------------
1 | """
2 | TODO
3 | as admin: netsh wlan show profile WiFi-name key=clear
4 | """


--------------------------------------------------------------------------------
/stage3/capture_credentials/windows/empire_spoof_outlook_login.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/capture_credentials/windows/empire_spoof_outlook_login.py


--------------------------------------------------------------------------------
/stage3/escalate_privilege/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/escalate_privilege/windows/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/escalate_privilege/windows/cve2017_0213.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/escalate_privilege/windows/cve2017_0213.py


--------------------------------------------------------------------------------
/stage3/escalate_privilege/windows/empire_bypassUAC.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/escalate_privilege/windows/empire_bypassUAC.py


--------------------------------------------------------------------------------
/stage3/escalate_privilege/windows/empire_localEternalBlue.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/escalate_privilege/windows/empire_localEternalBlue.py


--------------------------------------------------------------------------------
/stage3/escalate_privilege/windows/msf_eternal_blue.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/escalate_privilege/windows/msf_eternal_blue.py


--------------------------------------------------------------------------------
/stage3/internal_c2/__init__.py:
--------------------------------------------------------------------------------
1 | """Aka. Lateral Movement"""


--------------------------------------------------------------------------------
/stage3/internal_c2/windows/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/internal_c2/windows/msf_autoroute.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_c2/windows/msf_autoroute.py


--------------------------------------------------------------------------------
/stage3/internal_c2/windows/msf_setup_portfwd.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_c2/windows/msf_setup_portfwd.py


--------------------------------------------------------------------------------
/stage3/internal_reconn/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/empire_find_network_printer.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_reconn/windows/empire_find_network_printer.py


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/empire_is_user_admin.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_reconn/windows/empire_is_user_admin.py


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/msf_eternalblue_scan.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_reconn/windows/msf_eternalblue_scan.py


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/msf_ifconfig.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_reconn/windows/msf_ifconfig.py


--------------------------------------------------------------------------------
/stage3/internal_reconn/windows/msf_smbv2_scan.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage3/internal_reconn/windows/msf_smbv2_scan.py


--------------------------------------------------------------------------------
/stage4/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage4/__init__.py


--------------------------------------------------------------------------------
/stage4/empire_stop_logging.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage4/empire_stop_logging.py


--------------------------------------------------------------------------------
/stage4/leak_print_jobs.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/stage4/leak_print_jobs.py


--------------------------------------------------------------------------------
/test_empire2.2.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/test_empire2.2.py


--------------------------------------------------------------------------------
/test_pymsf.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jymcheong/AutoTTP/HEAD/test_pymsf.py


--------------------------------------------------------------------------------