Description

Replace the hard-coded PowerShell exploiter with a new and improved, fully tested, PowerShell exploiter plugin with high code quality. Leverage the BruteForceExploiter to minimize code duplication.

Use the SMBExploiter as a template.

Tasks

• Create plugin skeleton (0d) - @shreyamalviya
  • options (pydantic)
    • determine what options PowerShell should have
    • create a pydantic model for PowerShell options
  • Create plugin manifest
  • Create config schema
• Create a Pipfile for dependencies (0d) - @shreyamalviya
• Create a credentials generator (0d) @mssalvatore
• plugin.py (0d) - @shreyamalviya
  • Check preconditions in plugin.py
• command builder (0d) @ilija-lazoroski
• exploit client (0.25d) @ilija-lazoroski
  • Don't forget to add MITRE tags
• Update Jenkins (0d) - @shreyamalviya
  • Add a job to build the plugin
  • Update the island build jobs on Jenkins to copy the artifacts from the PowerShell plugin build job
• Update ETE test configurations (0d) @cakekoa
• Remove the hard-coded PowerShell plugin (0.25d) @mssalvatore
  • Don't forget to remove the dependencies from the agent's Pipfile
• Extra and ETE testing (0.5d)