Skip to content

Add args to Main/Execute definition #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dcsync wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add args to Main/Execute definition #2

dcsync wants to merge 1 commit into from

Conversation

@dcsync
Copy link

@dcsync dcsync commented Nov 13, 2018

This allows code within the Main/Execute function to take arguments.

I'm mostly interested in adding this because arguments passed to Cobalt Strike's bexecute_assembly function don't show up in Environment.GetCommandLineArgs() for some reason. For example:

beacon> client cat /tmp/args.cs
foreach (string arg in args) {
	Console.WriteLine(" - " + arg);
}
Console.WriteLine("");

foreach (string arg in Environment.GetCommandLineArgs()) {
	Console.WriteLine(" - " + arg);
}

beacon> sharpgen-execute-file /tmp/args.cs arg1 arg2 arg3
[*] Tasked beacon to execute C# code from: /tmp/args.cs
[+] host called home, sent: 936007 bytes
[+] received output:
 - arg1
 - arg2
 - arg3

 - C:\Users\user3\Desktop\beacon.exe

@dcsync
Add args to Main/Execute definition
dbdad08 
This allows code within the Main/Execute function to take arguments.
@cobbr
Copy link
Owner

cobbr commented Dec 12, 2018

Hey @dcsync, having a little trouble understanding this one as well.

I see you changed the WrapperFunctionFormat. Could you provide a practical example where it would be beneficial for that embedded class to accept arguments? You may have to share what sharpgen-execute-file is doing for me to totally understand (sorry I'm slow 😃)

@cobbr
Copy link
Owner

cobbr commented Mar 11, 2019

bump @dcsync

@dcsync
Copy link
Author

dcsync commented Apr 22, 2019

Hi Ryan! Sorry for the late response. My original intent behind adding arguments to WrapperFunctionFormat was to enable the development of a C# build cache.

I actually just finished integrating the build cache I was working on, along with a wrapper for SharpGen, into PyCobalt. Thanks to SharpGen I've managed to mostly replace PowerShell with C# in my personal set of Cobalt Strike scripts.

Here's an example PyCobalt beacon alias I put together to demonstrate how I tend to use arguments:

@aliases.alias('cat', 'View files')
def _(bid, *files):
    code = """
    foreach (string file in args) {
        var text = System.IO.File.ReadAllText(file);
        System.Console.Write(text);
    }
    """

    aggressor.btask(bid, 'Tasked beacon to get contents of: {}'.format(', '.join(files)))
    # compiles `code`, executes it on beacon `bid` with `files` as arguments
    sharpgen.execute(bid, code, files)

By passing arguments to Main() instead of generating C# code based on the arguments the code itself stays the same, allowing sharpgen.execute() to find a previously-built binary in the build cache.

I ended up putting together an external wrapper function which is probably a better solution for me.

@dcsync
Copy link
Author

dcsync commented Apr 22, 2019

Thanks for releasing SharpGen by the way! It's exactly what I was looking for in an inline C# compiler.

I was trying to put together some C# compilation helpers for Cobalt Strike with msbuild before but it was a bit of a mess. SharpGen has made things quite a bit easier.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dcsync @cobbr