mythic_facade/

mythic_facade.rs

//! Example demonstrating the `#![no_std]` mythic-c2 library — full agent lifecycle.
//!
//! The library crate compiles as `#![no_std]` (`cargo build`).  This example
//! binary links std only for `fn main()` — the API surface shown here uses
//! only `alloc` / `core` types and works identically in a true no_std implant.
//!
//! **Note:** `HttpC2` is a **stub** that returns empty strings.  Running this
//! example will panic at `.unwrap()` because the decode step receives an empty
//! response.  A real transport must return valid base64-encoded Mythic wire
//! packets.  See the unit tests for working encode/decode roundtrips.

use mythic::{Aes256HmacCrypto, C2Transport, MythicAgent, MythicError, TaskResponse};
use uuid::Uuid;

// ── C2 transport stub ──────────────────────────────────────

/// A fake HTTP transport for demonstration purposes.
/// In a real implant this would make actual HTTP(S) requests.
struct HttpC2 {
    key_b64: Option<String>,
}

impl C2Transport for HttpC2 {
    fn get_aes_psk(&self) -> Option<String> {
        self.key_b64.clone()
    }

    // 加密时覆盖 random_iv 提供真随机 IV（默认返回 Crypto 错误）
    fn random_iv(&self) -> Result<[u8; 16], MythicError> {
        // 实际部署: getrandom::getrandom(&mut iv)?; Ok(iv)
        Ok([0u8; 16]) // 演示用零 IV
    }

    fn checkin(&self, pkt: &str) -> Result<String, MythicError> {
        eprintln!("[HTTP] checkin  → {} bytes", pkt.len());
        // Real impl: POST to <server>/agent_message
        Ok(String::new())
    }

    fn get_tasking(&self, pkt: &str) -> Result<String, MythicError> {
        eprintln!("[HTTP] get_task → {} bytes", pkt.len());
        // Real impl: GET <server>/agent_message with base64 body
        Ok(String::new())
    }

    fn post_response(&self, pkt: &str) -> Result<String, MythicError> {
        eprintln!("[HTTP] post_resp → {} bytes", pkt.len());
        Ok(String::new())
    }
}

fn main() {
    let payload_uuid = Uuid::parse_str("f0f0f0f0-1111-2222-3333-444444444444").unwrap();

    // ── Plaintext checkin ─────────────────────────────────
    {
        let c2 = HttpC2 { key_b64: None };
        let agent = MythicAgent::easy_checkin(
            payload_uuid,
            &c2,
            vec!["10.0.0.1".into()],
            Some("linux".into()),
            Some("root".into()),
            Some("web01".into()),
            Some(1337),
            Some("x86_64".into()),
            None, None, None, None, None, None,
        )
        .unwrap();
        println!("Plaintext callback UUID: {}", agent.callback_uuid());
    }

    // ── Static-key checkin ────────────────────────────────
    {
        let key = Aes256HmacCrypto::new([0xAB; 32]).key_b64();
        let c2 = HttpC2 { key_b64: Some(key) };
        let agent = MythicAgent::easy_checkin(
            payload_uuid,
            &c2,
            vec!["192.168.1.100".into()],
            Some("windows".into()),
            Some("admin".into()),
            Some("DESKTOP-XYZ".into()),
            Some(2048),
            Some("x86_64".into()),
            None, None, None, None, None, None,
        )
        .unwrap();
        println!("Static-key callback UUID: {}", agent.callback_uuid());
    }

    // ── Full lifecycle: get_tasking → post_response ───────
    {
        let c2 = HttpC2 { key_b64: None };

        // 1. Checkin
        let agent = MythicAgent::easy_checkin(
            payload_uuid,
            &c2,
            vec!["10.0.0.2".into()],
            Some("linux".into()),
            Some("operator".into()),
            Some("implant01".into()),
            Some(9999),
            Some("aarch64".into()),
            None, None, None, None, None, None,
        )
        .unwrap();

        // 2. Poll for tasks
        match agent.get_tasking(1, &c2) {
            Ok(resp) => {
                for task in &resp.tasks {
                    println!("Received task {}: {}", task.id, task.command);

                    // 3. Execute and respond
                    let _ = agent.post_response(
                        vec![TaskResponse::completed(task.id, "task executed successfully")],
                        &c2,
                    );
                }
            }
            Err(e) => eprintln!("get_tasking failed: {e}"),
        }
    }

    println!("All demo scenarios complete.");
}