Merlin Versions Save

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

v1.3.0

2 years ago

Changed

Added the Integrity field to the agents.Agent and messages.SysInfo structures
The agent menu info command now shows the agent's integrity level
- Windows: 2-Medium, 3-High, 4-System
- All other OS: 3 - member of sudo group, 4 - running as root
Dockerfile now uses merlin-base image

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v1.2.1

2 years ago

Fixed

merlin-agent/Issue 6 - Message padding is now a random length instead of a fixed length

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v1.2.0

2 years ago

Highlights

rm command to remove, or delete, files using native Go functions
runas Windows command to create a process as another user with their password
ssh Connect to a remote host over SSH and execute a command (non-interactive)
token Windows command to interact with Windows Access Tokens
- make Create a new token with a username and password; Unlisted make_token alias
- privs List the current or remote process token privileges
- rev2self Drop any created or stolen access token and revert to original configuration; Unlisted rev2self alias
- steal Steal a token from another process; Unlisted steal_token alias
- whoami Enumerate process and thread token username, logon ID, privilege count, token type, impersonation level, and integrity level

Build ID: db3c882747558721bd61bda78185bd52708ed714

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v1.1.0

2 years ago

Highlights

Added the following commands:
- note - Add a note to an agent
- group - Create groups of agents to interact with
- sdelete - Securely delete a file
- ps - Get a Windows process list
- touch - Timestomp a file
- netstat - List network connections
- pipes - List Windows named pipes
- env - View, add, remove environment variables
- uptime - View the host's uptime
- queue - Queue up commands for agents or groups, even if they are not known to the server
Can use the sessions and interact command from any menu
Agent information now includes the process name
Pwnboard module

Build ID: 1aafa40023ba77346537035416a85742178a67fc

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v1.0.1

2 years ago

Fixed Issue 107 - RunModule() tasking uses run instead of removed cmd

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v1.0.0

3 years ago

Highlights

Moved agents to their own repositories: merlin-agent and merlin-agent-dll
Moved PRISM code
Added main.go to repository root for the Merlin server and removed the cmd directory all together
Removed Invoke-Melrin.ps1 and merlin.js from codebase completely
Revamped main README

Build ID: 7ea5237b6d25a86e9308395666857305f1b42da7

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v0.11.0-beta

3 years ago

Highlights

Added nslookup command to execute a DNS query using native Go
Added go-clr for in process .NET Common Language Runtime (CLR)
- load-assembly to load a .NET assembly into memory
- invoke-assembly to execute a previously loaded .NET assembly
- list-assemblies to list previously loaded .NET assemblies
Added memfd command to run Linux executables in-memory as an anonymous file
Upgraded go-quic package to support go v1.16

Build ID: 19bffe562021a44d7d9086b01247e21bfeea2155`

The Server downloads contain a copy of all compiled agents in the data/bin directory

Merlin documentation and Wiki can be found here

v0.10.0-beta

3 years ago

Highlights

Added windows/x64/go/exec/createProcess extended module with redirected STDOUT/STDERR over anonymous pipes
Added windows/x64/csharp/misc/SharpGen extended module that leverages SharpGen
Added execute-assembly, execute-pe, and sharpgen commands to Agent menu
New Jobs structure so that multiple jobs and results can be sent between client and server during a single interaction
Added a new jobs command to view created and sent jobs
Added a new clear command to remove any jobs that have not been sent to the agent
Added Makefile agent-windows-debug build target to enable viewing verbose and debug messages
Added Mythic client so Merlin agent can be used with the Mythic Framework
Changed the shell command to actually use the operating system's default shell
Changed the old cmd & shell commands to just use the run command which executes the program directly without a shell
Removed the cmd command from the Agents menu
View the CHANGELOG for additional details

Build ID: be117de982e568bca441e2b57ff4ed5739148f41

The Server downloads contain a copy of all compiled agents in the data/bin directory

v0.9.1-beta

3 years ago

Modules were not sending the first value from the modules commands section
Pull 97 - Incorrectly validated the module and agent platforms when the agent was set to "all"

The Server downloads contain a copy of all compiled agents in the data/bin directory

Build ID: 803c9861aa8c7f0318971d010d40937f80fa1458

v0.9.0-beta

3 years ago

New Listeners menu. The Merlin Server no longer takes command line arguments to start
- Start and stop as many listeners as you want without restarting the Merlin Server application
- Listeners can be started with a list of URL that an agent can communicate with (i.e. https://127.0.0.1:443/news.php)
Change agent's JA3 hash on the fly
Support for http, https, and h2c protocols
Several bug and security fixes
View the CHANGELOG for additional details

Build ID: 506ebc462fa040ff0a1b35004adc0cfdf0c88053