< Back
New-EmpireStager
Post
NAME New-EmpireStager
SYNOPSIS
Create a stager for a specified listener on a Empire server.
SYNTAX
New-EmpireStager [-Id] <Int32> [-ListenerName <String>] [-NoSSLCheck] -StagerName <String> [-OutFile <String>]
[-Proxy <String>] [-ProxyCreds <String>] [-UserAgent <String>] [-AdditionalOptions <Hashtable>]
[<CommonParameters>]
New-EmpireStager [-Token] <String> [-ComputerName] <String> [[-Port] <Int32>] [-ListenerName <String>]
[-NoSSLCheck] -StagerName <String> [-OutFile <String>] [-Proxy <String>] [-ProxyCreds <String>] [-UserAgent
<String>] [-AdditionalOptions <Hashtable>] [<CommonParameters>]
DESCRIPTION
Create a stager for a specified listener on a Empire server.
PARAMETERS
-Id <Int32>
Empire session Id of the session to use.
Required? true
Position? 1
Default value 0
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-Token <String>
Empire API token to use to execute the action.
Required? true
Position? 1
Default value
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-ComputerName <String>
IP Address or FQDN of remote Empire server.
Required? true
Position? 2
Default value
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-Port <Int32>
Port number to use in the connection to the remote Empire server.
Required? false
Position? 3
Default value 1337
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-ListenerName <String>
Name of the listener to generate a stager for.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-NoSSLCheck [<SwitchParameter>]
Do not check if the TLS/SSL certificate of the Empire is valid.
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-StagerName <String>
Name of the stager type to get information on. (Launcher, HTA, Launcher_Bat,
Launcher_VBS, PTH_WMIS, Macro, WAR, Stager, DLL, Ducky, HOP_PHP)
Required? true
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-OutFile <String>
File to output on remote Empire server.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-Proxy <String>
Proxy to use for request (default, none, or other).
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-ProxyCreds <String>
Proxy credentials ([domain\\]username:password) to use for request (default, none, or other).
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-UserAgent <String>
User-agent string to use for the staging request (default, none,or other)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-AdditionalOptions <Hashtable>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
System.Int32
NOTES
Licensed under BSD 3-Clause license
-------------------------- EXAMPLE 1 --------------------------
C:\\PS>New-EmpireStager -Id 0 -ListenerName CampaingSales -StagerName launcher
Explanation of what the example does
RELATED LINKS
SYNOPSIS
Create a stager for a specified listener on a Empire server.
SYNTAX
New-EmpireStager [-Id] <Int32> [-ListenerName <String>] [-NoSSLCheck] -StagerName <String> [-OutFile <String>]
[-Proxy <String>] [-ProxyCreds <String>] [-UserAgent <String>] [-AdditionalOptions <Hashtable>]
[<CommonParameters>]
New-EmpireStager [-Token] <String> [-ComputerName] <String> [[-Port] <Int32>] [-ListenerName <String>]
[-NoSSLCheck] -StagerName <String> [-OutFile <String>] [-Proxy <String>] [-ProxyCreds <String>] [-UserAgent
<String>] [-AdditionalOptions <Hashtable>] [<CommonParameters>]
DESCRIPTION
Create a stager for a specified listener on a Empire server.
PARAMETERS
-Id <Int32>
Empire session Id of the session to use.
Required? true
Position? 1
Default value 0
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-Token <String>
Empire API token to use to execute the action.
Required? true
Position? 1
Default value
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-ComputerName <String>
IP Address or FQDN of remote Empire server.
Required? true
Position? 2
Default value
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-Port <Int32>
Port number to use in the connection to the remote Empire server.
Required? false
Position? 3
Default value 1337
Accept pipeline input? true (ByPropertyName)
Accept wildcard characters? false
-ListenerName <String>
Name of the listener to generate a stager for.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-NoSSLCheck [<SwitchParameter>]
Do not check if the TLS/SSL certificate of the Empire is valid.
Required? false
Position? named
Default value False
Accept pipeline input? false
Accept wildcard characters? false
-StagerName <String>
Name of the stager type to get information on. (Launcher, HTA, Launcher_Bat,
Launcher_VBS, PTH_WMIS, Macro, WAR, Stager, DLL, Ducky, HOP_PHP)
Required? true
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-OutFile <String>
File to output on remote Empire server.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-Proxy <String>
Proxy to use for request (default, none, or other).
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-ProxyCreds <String>
Proxy credentials ([domain\\]username:password) to use for request (default, none, or other).
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-UserAgent <String>
User-agent string to use for the staging request (default, none,or other)
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-AdditionalOptions <Hashtable>
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
System.Int32
NOTES
Licensed under BSD 3-Clause license
-------------------------- EXAMPLE 1 --------------------------
C:\\PS>New-EmpireStager -Id 0 -ListenerName CampaingSales -StagerName launcher
Explanation of what the example does
RELATED LINKS