Added TuoniPayload, TuoniPayloadTemplate classes

karlkr · JaanusKaap · commit ea9b0a806bd6 · 2026-03-20T12:53:11.000+02:00
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,4 @@
+__pycache__
+.python-version
+.venv
+dist/
diff --git a/tuoni/TuoniCommandPlugin.py b/tuoni/TuoniCommandPlugin.py
@@ -0,0 +1,34 @@
+import random
+from tuoni.TuoniCommandTemplate import *
+
+
+class TuoniCommandPlugin:
+    """
+    A class that provides data and functionality for a command plugin.
+
+    Attributes:
+        name (str): The name of the command plugin.
+        vendor (str): The vendor of the command plugin.
+        description (str): A description of the command plugin.
+        plugin_id (str): The unique identifier of the command plugin.
+        commands (list[TuoniCommandTemplate]): A list of command templates associated with the plugin.
+
+    """
+
+    def __init__(self, conf, c2):
+        """
+        Constructor for the command plugin class.
+
+        Args:
+            conf (dict): Data from the server.
+            c2 (TuoniC2): The related server object that manages communication.
+        """
+        self.name = conf["info"]["name"]
+        self.vendor = conf["info"]["vendor"]
+        self.description = conf["info"]["description"]
+        self.plugin_id = conf["identifier"]["id"]
+        self.c2 = c2
+        self.commands = []
+        for command_name in conf["commands"]:
+            self.commands.append(TuoniCommandTemplate(
+                conf["commands"][command_name], c2))
diff --git a/tuoni/TuoniCommandTemplate.py b/tuoni/TuoniCommandTemplate.py
@@ -0,0 +1,63 @@
+import random
+from tuoni.TuoniListener import *
+
+
+class TuoniCommandTemplate:
+    """
+    A class that provides data and functionality for a command template.
+
+    Attributes:
+        id (str): The unique identifier of the command template.
+        name (str): The name of the command template.
+        plugin_id (str): The unique identifier of the command plugin.
+        scope (str): The scope of the command template.
+        qualifiedName (str): The qualified name of the command template.
+        fullyQualifiedName (str): The fully qualified name of the command template.
+        description (str): A description of the command template.
+        conf_schema (dict): The configuration schema for the command template.
+        conf_examples (dict): Examples of valid configurations for the command template.
+    """
+
+    def __init__(self, conf, c2):
+        """
+        Constructor for the command template class.
+
+        Args:
+            conf (dict): Data from the server.
+            c2 (TuoniC2): The related server object that manages communication.
+        """
+        self.id = conf["id"]
+        self.name = conf["name"]
+        self.plugin_id = conf["pluginId"]
+        self.scope = conf["scope"]
+        self.qualifiedName = conf["qualifiedName"]
+        self.fullyQualifiedName = conf["fullyQualifiedName"]
+        self.description = conf["description"]
+        self.conf_schema = conf["configurationSchema"]
+        self.conf_examples = {}
+        if "defaultConfiguration" in conf:
+            self.conf_examples["default"] = conf["defaultConfiguration"]
+        if "exampleConfigurations" in conf:
+            for example in conf["exampleConfigurations"]:
+                self.conf_examples[example["name"]] = example["configuration"]
+        self.c2 = c2
+
+    def get_default_conf(self):
+        """
+        Retrieve the default configuration for the command template.
+
+        Returns:
+            dict: The default configuration settings, or an empty dictionary if none are defined.
+        """
+        if "default" in self.conf_examples:
+            return self.conf_examples["default"]
+        return {}  # Might change but let's say for now that if no "default" conf then empty conf is same
+
+    def get_minimal_conf(self):
+        """
+        Retrieve the minimal configuration for the command template.
+
+        Returns:
+            dict: The minimal configuration settings, or an empty dictionary if none are defined.
+        """
+        return self.get_default_conf()
diff --git a/tuoni/TuoniListener.py b/tuoni/TuoniListener.py
@@ -12,7 +12,7 @@ class TuoniListener:
         plugin (str): The plugin associated with the listener.
         configuration (dict): The configuration settings for the listener.
     """
-    
+
     def __init__(self, conf, c2):
         """
         Constructor for the listener class.
@@ -31,6 +31,8 @@ def _load_conf(self, conf):
         self.status = conf["status"]
         self.plugin = conf["plugin"]
         self.configuration = conf["configuration"]
+        self.configuration_files = conf.get("configurationFiles", {})
+
 
     def stop(self):
         """
@@ -68,14 +70,15 @@ def reload(self):
         data = self.c2.request_get(f"/api/v1/listeners/{self.listener_id}")
         self._load_conf(data)
 
-    def update(self,):
+    def update(self):
         """
         Update listener on the server.
         """
         if self.listener_id is None:
             raise ExceptionTuoniDeleted("")
         req = {
             "configuration": self.configuration,
+            "configurationFiles": self.configuration_files,
             "name": self.name
         }
         self.c2.request_patch(f"/api/v1/listeners/{self.listener_id}", req)
diff --git a/tuoni/TuoniPayload.py b/tuoni/TuoniPayload.py
@@ -0,0 +1,143 @@
+class TuoniPayload:
+    """
+    A class that provides data and functionality for a sent payload.
+
+    Attributes:
+        payload_id (int): The unique identifier of the payload.
+        template_id (str): The unique identifier of the payload template used to create the payload.
+        template_name (str): The name of the payload template used to create the payload.
+        configuration (dict): The configuration settings for the payload.
+        listeners (list): The listeners associated with the payload.
+        os (str): The operating system for the payload.
+        architecture (str): The architecture for the payload.
+        status (str): The status of the payload.
+        encrypted_communication (bool): Indicates if the communication is encrypted.
+
+    Examples:
+        Create a payload from a conf dict and save it to disk:
+
+        >>> payload = TuoniPayload(
+        ...     conf={
+        ...         "templateId": "shelldot.payload.windows-x64",
+        ...         "configuration": {"type": "executable"}
+        ...     },
+        ...     c2=tuoni_c2
+        ... )
+        >>> payload.create(listener_id=1)
+        >>> print(f"Created payload with ID: {payload.payload_id}")
+        >>>
+        >>> # Download and save the payload binary
+        >>> data = payload.download()
+        >>> with open("agent.exe", "wb") as f:
+        ...     f.write(data)
+        >>>
+        >>> # Delete the payload when done
+        >>> payload.delete()
+    """
+
+    def __init__(self, conf=None, c2=None):
+        """
+        Constructor for the payload class.
+
+        Args:
+            conf (dict): A dict to initialize the payload from. When passed a server
+                response all fields are populated. When passed a user-provided creation
+                dict, only ``templateId`` and ``configuration`` are required; ``name``,
+                ``encryptedCommunication`` (default ``True``), and
+                ``configurationFiles`` (default ``[]``) are optional.
+            c2 (TuoniC2): The related server object that manages communication.
+        """
+        self.payload_id = None
+        self.name = None
+        self.template_id = None
+        self.configuration = {}
+        self.configuration_files = []
+        self.encrypted_communication = True
+        self.c2 = c2
+        if conf is not None:
+            self._load_conf(conf)
+
+    def _load_conf(self, conf):
+        self.payload_id = conf.get("id", None)
+        self.name = conf.get("name", None)
+        self.template_id = conf.get("templateId", self.template_id)
+        self.configuration = conf.get("configuration", self.configuration)
+        self.listeners = conf.get("listeners", [])
+        self.os = conf.get("os", None)
+        self.architecture = conf.get("architecture", None)
+        self.status = conf.get("status", None)
+        self.encrypted_communication = conf.get("encryptedCommunication", self.encrypted_communication)
+        self.configuration_files = conf.get("configurationFiles", self.configuration_files)
+
+    def load(self, id):
+        """
+        Load the payload data from the C2 server using the payload ID.
+
+        Args:
+            id (int): The unique identifier of the payload to load.
+        """
+        data = self.c2.request_get(f"/api/v1/payloads/{id}")
+        self._load_conf(data)
+
+    def create(self, listener_id):
+        """
+        Create the payload on the C2 server.
+
+        Args:
+            listener_id (int): The ID of the listener to associate with this payload.
+
+        Examples:
+            >>> payload = TuoniPayload(
+            ...     conf={
+            ...         "templateId": "shelldot.payload.windows-x64",
+            ...         "configuration": {"type": "executable"}
+            ...     },
+            ...     c2=tuoni_c2
+            ... )
+            >>> payload.create(listener_id=1)
+        """
+        if self.payload_id is not None:
+            raise Exception("Payload already created.")
+        data = self.c2.request_post("/api/v1/payloads", {
+            "payloadTemplateId": self.template_id,
+            "name": self.name,
+            "configuration": self.configuration,
+            "configurationFiles": self.configuration_files,
+            "listenerId": listener_id,
+            "encrypted": self.encrypted_communication
+        })
+        self._load_conf(data)
+
+    def delete(self):
+        """
+        Delete the payload from the C2 server.
+        """
+        if self.payload_id is None:
+            raise Exception("Payload not created.")
+        self.c2.request_delete(f"/api/v1/payloads/{self.payload_id}")
+        self.payload_id = None
+
+    def update(self):
+        """
+        Update the payload configuration on the C2 server.
+
+        Args:
+            new_configuration (dict): The new configuration settings for the payload.
+        """
+        if self.payload_id is None:
+            raise Exception("Payload not created.")
+        data = self.c2.request_patch(f"/api/v1/payloads/{self.payload_id}", {
+            "name": self.name
+        })
+        self._load_conf(data)
+
+    def download(self):
+        """
+        Download the payload from the C2 server.
+
+        Returns:
+            bytes: The binary data of the downloaded payload.
+        """
+        if self.payload_id is None:
+            raise Exception("Payload not created.")
+        return self.c2.request_get(f"/api/v1/payloads/{self.payload_id}/download", result_as_json=False, result_as_bytes=True)
diff --git a/tuoni/TuoniPayloadPlugin.py b/tuoni/TuoniPayloadPlugin.py
@@ -1,5 +1,6 @@
 import random
 from tuoni.TuoniListener import *
+from tuoni.TuoniPayloadTemplate import *
 
 class TuoniPayloadPlugin:
     """
@@ -11,8 +12,34 @@ class TuoniPayloadPlugin:
         description (str): A description of the payload plugin.
         plugin_id (str): The unique identifier of the payload plugin.
         templates (list): A list of available payload templates.
+
+    Examples:
+        Iterate over payload plugins, inspect their templates, and create a payload
+        for each type defined in the template's configuration schema:
+
+        >>> payload_plugins = tuoni_c2.load_payload_plugins()
+        >>> for plugin in payload_plugins.values():
+        ...     print(f"Plugin: {plugin.name} ({plugin.plugin_id})")
+        ...     for template in plugin.templates:
+        ...         print(f"  Template: {template.id}")
+        ...         type_values = (
+        ...             template.conf_schema
+        ...             .get("properties", {})
+        ...             .get("type", {})
+        ...             .get("enum", [])
+        ...         )
+        ...         for type_value in type_values:
+        ...             payload = TuoniPayload(
+        ...                 conf={
+        ...                     "templateId": template.id,
+        ...                     "configuration": {"type": type_value}
+        ...                 },
+        ...                 c2=tuoni_c2
+        ...             )
+        ...             payload.create(listener_id=1)
+        ...             print(f"    Created payload ID: {payload.payload_id}")
     """
-    
+
     def __init__(self, conf, c2):
         """
         Constructor for the payload plugin class.
@@ -26,7 +53,7 @@ def __init__(self, conf, c2):
         self.description = conf["info"]["description"]
         self.plugin_id = conf["identifier"]["id"]
         self.templates = []
-        for payloadTemplate in conf["payloads"]:
-            self.templates.append(payloadTemplate)
+        for payloadTemplateName, payloadTemplate in conf["payloads"].items():
+            self.templates.append(TuoniPayloadTemplate(payloadTemplate, c2))
         self.c2 = c2
 
diff --git a/tuoni/TuoniPayloadTemplate.py b/tuoni/TuoniPayloadTemplate.py

-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +__pycache__
 +.python-version
 +.venv
 +dist/