Releases: chainreactors/malice-network
Release
IoM v0.1.1 Out of the Box 开箱即用 Patch3 20250718
更新日志请见: https://wiki.chainreactors.red/blog/2025/07/09/IoM_v0.1.1/
Patch 1 20250710
- [fix] 修复autobuild目录检测的bug
- [fix] docker不存在时使用docker编译的panic
- [fix] 修复默认的implant profile中anti sandbox默认打开, 导致windows在vmware中无法上线的bug
- [fix] 修复部分情况下http pipeline无法正确上线的bug
Patch2 20250714
GUI适配v0.1.1
- [fix] 修复build --target msvc失效的bug
- [fix] nano modules 导致client panic的bug
- [fix] delete website not work
- [fix] auto set listener ip
- [fix] build module overwrite
- [fix] exec join cmd bug
- [fix] http host auto overwrite
Patch3 20250718
- [fix] 修复patch2中的listener ip覆盖导致的profile ip bug
- [fix] saas build 恢复
- [fix] linux exec /c bug
- [fix] prebuild module not work
- [improve] add client windows arm
- [improve] mal help print
Full Changelog: v0.1.0...v0.1.1
v0.1.0 (Patch2 20250625) 代替CobaltStrike的最后四块碎片
更新日志: https://chainreactors.github.io/wiki/blog/2025/04/14/IoM_v0.1.0/
十几个重要更新+四大新组件:
- 基于vscode extension的GUI客户端
- 基于lua脚本语言的插件系统以及迁移了数百个插件的基础插件生态
- 基于rem实现的代理/隧道功能组
- 类似BeaconGate的动态函数调用和Ollvm
Patch 1. 20250502
- [fix] none sysinfo 导致的panic #31
- [fix] 自动化编译时pipeline的protocol没有生效的bug (微信群反馈)
- [fix] pivot list 为空时的panic
- [fix] 更新内置的rem至v0.2.3, 修复rem dial不生效的bug
- [fix] 自动生成的文档中缺少一部分builtin函数
- [improve] 补充 DumpLsass 和 rem 的使用示例文档
Patch 2. 20250604
- [feat] 现在能看到编译进度
- [feat] mals 新增一组api, console(), sessions(), listener(), pipelines()
- [feat] 清理数据库后,如果配置没有修改,session会尝试自动恢复
- [improve] listener 连接至server时会有超时的错误信息
- [improve] 多个gui bug修复与改进
- [fix] sync 命令同步文件失效的bug
- [fix] rem list panic
- [fix] lua vm自动销毁
- [fix] mal install 失效, mal install的时候会自动load
Patch 3. 20250619
- [feat] impl run,execute cmd, 完全同步Cobaltstrike中的run、execute、shell的特性
- [feat] impl switch module, 可以动态切换pipeline
- [feat] implant实装代理功能, 新增build时 --proxy参数
- [fix] 优化session leave的逻辑
- [fix] list pipeline not print http
- [fix] fix http pipeline unexpected chunked
- [fix] pipeline doesn't convert in starting
Patch 4. 20250625
- [fix] 修复build bug
Nightly Build nightly-20251210
🌙 Nightly build
📝 Commit: 33e7ec0
📦 This release includes the latest changes from the main branch.
Usage: https://chainreactors.github.io/wiki/IoM/manual/manual/GUI
v0.0.4 Bootstrapping (patch2)
v0.0.4 更新日志见:https://chainreactors.github.io/wiki/blog/2025/01/02/IoM_v0.0.4/
Changelog
Patch1
- [feat] mal插件中关于path的部分均可以使用伪协议,
bin:[],url:http://..., 默认为file, 可忽略前缀 - [feat] 新增config命令组, 可通过config命令不重启server的情况下修改server的github action与notify配置
- [feat] 适配新的BOF response, 添加文件创建,文件写入handler
- [fix] website stop failed
- [fix] session update failed and help template
- [fix] Fixed binding flag for RegAddCmd.
- [fix] Updated several built-in functions.
Patch2
- [feat] 在pipeline初始化时自动化发起编译(可配置),进一步简化初次搭建时操作
- [fix] reg add 高权限注册表不生效, 并修改了reg add的参数与windows原生命令一致
- [fix] 修复往windows pipe写入阻塞
- [fix] bof数据回显没有渲染
- [fix] adapt go1.20 and windows 7
v0.0.3 RedTeam Infra&C2 framework (Patch1)
完整更新说明: https://chainreactors.github.io/wiki/blog/2024/11/20/IoM_v0.0.3/
Changelog
Patch1
- [feat] display build container log
- [feat] prelude autorun.yaml upload
v0.0.2 the Real Beginning (Patch1)
Changelog
see: https://chainreactors.github.io/wiki/blog/2024/09/23/IoM_v0.0.2/
Patch1
- [fix] rootrpc list user/listener not work
- [fix]
server -i [ip]not work - [fix] group default value not work
- [fix] server config.yaml
notifynot set panic - [fix] panic when no any mal
- [enhance] 优化切换session时的输出
- [enhance] 优化login登录逻辑与展示
v0.0.1 (rebuild)
Changelog
- 修复session panic bug
- 修复exec panic bug
https://chainreactors.github.io/wiki/IoM/
Full Changelog: https://github.com/chainreactors/malice-network/commits/v0.0.1