# AttackMate
AttackMate is a tool to automate cyber attack scenarios that supports scripting of attack techniques across all phases of the MITRE attack chain. AttackMate's design principles aim to integrate with penetration testing and attack emulation frameworks such as Metasploit and Sliver Framework and enables simple execution of commands via shell or ssh. For example, AttackMate enables to execute Metasploit modules or generate payloads and run commands in Metasploit sessions. Moreover, it is able to generate Sliver implants, automatize Sliver to send C2 commands, and configure and compile ld_preload_rootkits. AttackMate also offers a simple interface to automate shell or ssh interaction, run commands in background mode, transfer files via sftp, and start http clients or servers. All attack steps may be scheduled, chained, and repeatedly executed using a simple configuration file that supports variable declarations and conditional workflows.
## Requirements
* python >= 3.10
* libmagic
## Installation
Manually:
```
$ git clone https://github.com/ait-aecid/attackmate.git
$ cd attackmate
$ pip3 install .
```
Using pip:
```
$ pip3 install attackmate
```
## Execute
```
$ attackmate playbook.yml
```
## Documentation
Please take a look at our documentation for how to install and use attackmate:
* [Installation](https://aeciddocs.ait.ac.at/attackmate/current/installation/index.html)
* [Documentation](https://aeciddocs.ait.ac.at/attackmate/current)
* [Command Reference](https://aeciddocs.ait.ac.at/attackmate/current/playbook/commands/index.html)
* [Example Playbooks](https://aeciddocs.ait.ac.at/attackmate/current/playbook/examples.html)
## Disclaimer
AttackMate is purely for educational and academic purposes. The software is provided "as is"
and the authors are not responsible for any damage or mishaps that may occur during its use.
Do not attempt to use AttackMate to violate the law. Misuse of the provided software and
information may result in criminal charges.
## Security
AttackMate should only be executed against own test or training systems.
For this reason, every software bug is treated equally, regardless of
whether it is security relevant or not.
*Please note that AttackMate could easily be executed in a dangerous way. For example, by
parsing the RESULT_STDOUT of a malicious server. The server response could lead to
a command injection. Keep that in mind!
## License
[GPL-3.0](LICENSE)
Raw data
{
"_id": null,
"home_page": "",
"name": "attackmate",
"maintainer": "",
"docs_url": null,
"requires_python": ">=3.7",
"maintainer_email": "",
"keywords": "Pentest,Attack,Orchestration,Hacking,Simulating,Attackchain",
"author": "",
"author_email": "Wolfgang Hotwagner <wolfgang.hotwagner@ait.ac.at>",
"download_url": "https://files.pythonhosted.org/packages/cc/a3/07caeae9866eb56e0e912b0117f5338a39b13085083f094a18bdb2573998/attackmate-0.0.0.tar.gz",
"platform": null,
"description": "# AttackMate\n\nAttackMate is a tool to automate cyber attack scenarios that supports scripting of attack techniques across all phases of the MITRE attack chain. AttackMate's design principles aim to integrate with penetration testing and attack emulation frameworks such as Metasploit and Sliver Framework and enables simple execution of commands via shell or ssh. For example, AttackMate enables to execute Metasploit modules or generate payloads and run commands in Metasploit sessions. Moreover, it is able to generate Sliver implants, automatize Sliver to send C2 commands, and configure and compile ld_preload_rootkits. AttackMate also offers a simple interface to automate shell or ssh interaction, run commands in background mode, transfer files via sftp, and start http clients or servers. All attack steps may be scheduled, chained, and repeatedly executed using a simple configuration file that supports variable declarations and conditional workflows.\n\n\n![AttackMate Schema](docs/source/images/attackmate-schema.png \"AttackMate Schema\")\n\n\n## Requirements\n\n* python >= 3.10\n* libmagic\n\n## Installation\n\nManually:\n\n```\n$ git clone https://github.com/ait-aecid/attackmate.git\n$ cd attackmate\n$ pip3 install .\n```\n\nUsing pip:\n\n```\n$ pip3 install attackmate\n```\n\n## Execute\n\n```\n$ attackmate playbook.yml\n```\n\n![AttackMate Demo](docs/source/images/Demo.gif \"AttackMate Demo\")\n\n## Documentation\n\nPlease take a look at our documentation for how to install and use attackmate:\n\n* [Installation](https://aeciddocs.ait.ac.at/attackmate/current/installation/index.html)\n* [Documentation](https://aeciddocs.ait.ac.at/attackmate/current)\n* [Command Reference](https://aeciddocs.ait.ac.at/attackmate/current/playbook/commands/index.html)\n* [Example Playbooks](https://aeciddocs.ait.ac.at/attackmate/current/playbook/examples.html)\n\n## Disclaimer\n\nAttackMate is purely for educational and academic purposes. The software is provided \"as is\"\nand the authors are not responsible for any damage or mishaps that may occur during its use.\n\nDo not attempt to use AttackMate to violate the law. Misuse of the provided software and\ninformation may result in criminal charges.\n\n## Security\n\nAttackMate should only be executed against own test or training systems.\nFor this reason, every software bug is treated equally, regardless of\nwhether it is security relevant or not.\n\n*Please note that AttackMate could easily be executed in a dangerous way. For example, by\nparsing the RESULT_STDOUT of a malicious server. The server response could lead to\na command injection. Keep that in mind!\n\n## License\n\n[GPL-3.0](LICENSE)\n",
"bugtrack_url": null,
"license": "GPL-3.0",
"summary": "AttackMate is an attack orchestration tool that executes full attack-chains based on playbooks.",
"version": "0.0.0",
"project_urls": null,
"split_keywords": [
"pentest",
"attack",
"orchestration",
"hacking",
"simulating",
"attackchain"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "43935ac0e985a4d41cdb5ffb0d065b81f1375a45dd6e8615ff08c10dbbf677da",
"md5": "b1643c04d732241f00c4384d2c7eecff",
"sha256": "0dfbc761128645ef6641d657eca3340be4ca87a4cbdb6f54e8ac5b5a8b4cc139"
},
"downloads": -1,
"filename": "attackmate-0.0.0-py3-none-any.whl",
"has_sig": false,
"md5_digest": "b1643c04d732241f00c4384d2c7eecff",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": ">=3.7",
"size": 83509,
"upload_time": "2023-11-03T11:54:52",
"upload_time_iso_8601": "2023-11-03T11:54:52.427200Z",
"url": "https://files.pythonhosted.org/packages/43/93/5ac0e985a4d41cdb5ffb0d065b81f1375a45dd6e8615ff08c10dbbf677da/attackmate-0.0.0-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "cca307caeae9866eb56e0e912b0117f5338a39b13085083f094a18bdb2573998",
"md5": "30fb9786f30d6d43880fecb1647b6cff",
"sha256": "5f14546ee8e4fb661c49f7901630ff68efc26d0de2d394020826a98aa83b2ca9"
},
"downloads": -1,
"filename": "attackmate-0.0.0.tar.gz",
"has_sig": false,
"md5_digest": "30fb9786f30d6d43880fecb1647b6cff",
"packagetype": "sdist",
"python_version": "source",
"requires_python": ">=3.7",
"size": 65892,
"upload_time": "2023-11-03T11:54:54",
"upload_time_iso_8601": "2023-11-03T11:54:54.048557Z",
"url": "https://files.pythonhosted.org/packages/cc/a3/07caeae9866eb56e0e912b0117f5338a39b13085083f094a18bdb2573998/attackmate-0.0.0.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2023-11-03 11:54:54",
"github": false,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"lcname": "attackmate"
}
JSON