Skip to content

Common implant folder #2781

New issue
New issue
Open
Feature
Open
Common implant folder#2781
Feature
Labels
featureuse for describing a new feature to developneeds triageuse to identify issue needing triage from Filigran Product team
@damgouj

Description

@damgouj
damgouj
opened on Mar 26, 2025

Context

When a payload is executed in OpenBAS, an executable is downloaded on the machine targeted with the payload to execute. According to the type of agent used, the folder to download the implant is different.

Use case

Current Workaround

Proposed Solution

Download the implant in a same folder for each agent and each platform. We could add a property too for the user to customize the folder himself.

Additional Information

Crowdstrike agent -> downloaded in tmp folder (can't be in Crowdstrike agent folder and tmp folder cleans all the implant at restart).
OpenBAS and Caldera agent -> agent folder, implant cleaned by a loop.
Tanium agent -> agent folder but implant not cleaned.

If the feature request is approved, would you be willing to submit a PR?

Yes

Metadata

Metadata

Assignees

No one assigned

    Labels

    featureuse for describing a new feature to developneeds triageuse to identify issue needing triage from Filigran Product team

    Type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions