release v0.2

Author: adgaultier

.github/workflows/ci.yaml

@@ -15,10 +15,10 @@ jobs:
       - uses: cargo-bins/cargo-binstall@main
       - uses: dtolnay/rust-toolchain@stable
         with:
-          toolchain: nightly
+          toolchain: nightly-2024-12-31 #we do not trust llvm20 yet
           components: clippy rustfmt
 
-      - run: cargo binstall -y bpf-linker
+      - run: cargo install bpf-linker
 
       - name: Build Tamanoir
         run: just tamanoir-build

.github/workflows/release.yaml

@@ -5,57 +5,138 @@ on:
     tags:
       - "*"
 jobs:
-  build:
+  build_x86:
     permissions:
       contents: write
     continue-on-error: false
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
         uses: actions/checkout@v4
+      - uses: dtolnay/rust-toolchain@stable
+        with:
+          toolchain: "nightly-2024-12-31" #we do not trust llvm20 yet
+          components: clippy rustfmt
 
-      - uses: taiki-e/install-action@just
+      - name: Install the dependencies
+        run: |
+          sudo apt update
+          sudo apt install -y protobuf-compiler
+          cargo install  bpf-linker
+          
+      - name: Build tamanoir-ebpf
+        run: cd tamanoir-ebpf && cargo build  --release
 
-      - uses: cargo-bins/cargo-binstall@main
+      - name: Build tamanoir for x86_64
+        run: |
+          cargo build -p tamanoir  --target x86_64-unknown-linux-gnu --release
+          cp target/x86_64-unknown-linux-gnu/release/tamanoir tamanoir-x86_64
 
+      - name: Build tamanoir-c2 for x86_64
+        run: |
+          cargo build -p tamanoir-c2 --target x86_64-unknown-linux-gnu --release
+          cp target/x86_64-unknown-linux-gnu/release/tamanoir-c2 tamanoir-c2-x86_64
+
+      - name: Build tamanoir-tui for x86_64
+        run: |
+          cargo build -p tamanoir-tui --target x86_64-unknown-linux-gnu --release
+          cp target/x86_64-unknown-linux-gnu/release/tamanoir-tui tamanoir-tui-x86_64
+
+      - name: Build hello-world shellcodes for x86_64
+        run: |
+          ./tamanoir-c2-x86_64 rce  build  -c ./assets/payloads/hello -t x86_64
+          ./tamanoir-c2-x86_64 rce  build  -c ./assets/payloads/xeyes -t x86_64
+          cp $HOME/.tamanoir/bins/tamanoir-rce-hello_x86_64.bin tamanoir-rce-hello_x86_64.bin
+          cp $HOME/.tamanoir/bins/tamanoir-rce-xeyes_x86_64.bin tamanoir-rce-xeyes_x86_64.bin
+
+      - name: Persist artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: x86-artifacts
+          path: |
+            tamanoir-x86_64
+            tamanoir-c2-x86_64
+            tamanoir-tui-x86_64
+            tamanoir-rce-hello_x86_64.bin
+            tamanoir-rce-xeyes_x86_64.bin
+     
+  build_arm:
+    permissions:
+      contents: write
+    continue-on-error: false
+    runs-on: ubuntu-24.04-arm
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
       - uses: dtolnay/rust-toolchain@stable
         with:
-          toolchain: nightly
+          toolchain: "nightly-2024-12-31" #we do not trust llvm20 yet
           components: clippy rustfmt
 
       - name: Install the dependencies
         run: |
           sudo apt update
-          sudo apt install -y podman binutils-aarch64-linux-gnu musl-tools
-          cargo binstall -y cross
-          cargo binstall -y bpf-linker
+          sudo apt install -y protobuf-compiler llvm-19-dev libclang-19-dev clang-19
+          export LD_LIBRARY_PATH=/usr/lib/llvm-19/lib:$LD_LIBRARY_PATH
+          cargo install  bpf-linker
+
 
       - name: Build tamanoir-ebpf
-        run: just build-ebpf
+        run: cd tamanoir-ebpf && cargo build  --release
 
-      - name: Build tamanoir-proxy for arm64 musl
+      - name: Build tamanoir for arm64
         run: |
-          CROSS_CONTAINER_ENGINE=podman cross build -p tamanoir-proxy --target aarch64-unknown-linux-musl --release
-          cp target/aarch64-unknown-linux-musl/release/tamanoir tamanoir-aarch64-unknown-linux-musl
+          cargo build -p tamanoir --target aarch64-unknown-linux-gnu --release
+          cp target/aarch64-unknown-linux-gnu/release/tamanoir tamanoir-aarch64
 
-      - name: Build tamanoir-proxy for x86_64 musl
+      - name: Build tamanoir-C2 for arm64
         run: |
-          CROSS_CONTAINER_ENGINE=podman cross build -p tamanoir-proxy --target x86_64-unknown-linux-musl --release
-          cp target/x86_64-unknown-linux-musl/release/tamanoir tamanoir-x86_64-unknown-linux-musl
+          cargo build -p tamanoir-c2 --target aarch64-unknown-linux-gnu --release
+          cp target/aarch64-unknown-linux-gnu/release/tamanoir-c2 tamanoir-c2-aarch64
 
-      - name: Build tamanoir for arm64 musl
+      - name: Build tamanoir-tui for arm64
         run: |
-          CROSS_CONTAINER_ENGINE=podman cross build --target aarch64-unknown-linux-musl --release
-          cp target/aarch64-unknown-linux-musl/release/tamanoir tamanoir-aarch64-unknown-linux-musl
+          cargo build -p tamanoir-tui --target aarch64-unknown-linux-gnu --release
+          cp target/aarch64-unknown-linux-gnu/release/tamanoir-tui tamanoir-tui-aarch64
 
-      - name: Build tamanoir for x86_64 musl
+      - name: Build hello-world shellcodes for arm64
         run: |
-          CROSS_CONTAINER_ENGINE=podman cross build --target x86_64-unknown-linux-musl --release
-          cp target/x86_64-unknown-linux-musl/release/tamanoir tamanoir-x86_64-unknown-linux-musl
+          ./tamanoir-c2-aarch64 rce  build  -c ./assets/payloads/hello -t aarch64
+          ./tamanoir-c2-aarch64 rce  build  -c ./assets/payloads/xeyes -t aarch64
+          cp $HOME/.tamanoir/bins/tamanoir-rce-hello_aarch64.bin tamanoir-rce-hello_aarch64.bin
+          cp $HOME/.tamanoir/bins/tamanoir-rce-xeyes_aarch64.bin tamanoir-rce-xeyes_aarch64.bin
+
+      - name: Persist artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: arch-artifacts
+          path: |
+            tamanoir-aarch64
+            tamanoir-c2-aarch64
+            tamanoir-tui-aarch64
+            tamanoir-rce-hello_aarch64.bin
+            tamanoir-rce-xeyes_aarch64.bin
 
-      - name: Upload Binary
+  release:
+    permissions:
+        contents: write
+    continue-on-error: false
+    needs: [build_x86,build_arm]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Download artifacts
+        uses: actions/download-artifact@v4
+        with:
+          path: release-assets
+      - name: Upload Binaries
         uses: softprops/action-gh-release@v2
         with:
-          files: "tamanoir*"
+          fail_on_unmatched_files: true
+          files: |
+            release-assets/**/tamanoir-*
           body: |
             [Release.md](${{ github.server_url }}/${{ github.repository }}/blob/main/Release.md)
+
+

Release.md

@@ -1,3 +1,14 @@
 ## v0.1 - 2024-12-02
 
 First release 🎉
+
+## v0.2 - 2024-05-12
+
+### Added
+
+- TUI Client
+- C2 Server
+- Shellcodes transmission:
+    - hello-world
+    - xeyes
+    - reverse-shell

assets/doc/tamanoir-c2.md

@@ -32,11 +32,16 @@ Tamanoir comes with ready-to-use payloads :
 | xeyes | open `xeyes` program on target gui | demonstrate how to execute simple shellcode. Only works if target uses x11 |
 | reverse-shell | open a tcp-shell communicating with tamanoir-c2 | needs to specify IP var when building (see below) 
 
-
-### 📍 payloads location: ./assets/payloads
+#### 📍If using release binaries, make sure to include your `tamanoir-rce-*.bin` in `~/.tamanoir/bins` directory on tamanoir-c2 host
+⇨ You'll then be able to select them in tui for transmission to target.<br> 
+⇨ You'll have to choose either aarch64 or x86_64 architecture depending on target architecture.
 
 
 ## 🔧 Builder
+You also can build provided  payloads from source, and even build your own <br>
+Building is mandatory for reverse-shell rce payload, which needs to know your tamanoir-c2 ip @build time
+
+### 📍 payloads location: ./assets/payloads
 
  `tamanoir-c2 rce build`
 

tamanoir-ebpf/.cargo/config.toml

@@ -1,5 +1,6 @@
 [build]
 target = ["bpfeb-unknown-none", "bpfel-unknown-none"]
+rustflags = ["-C", "linker=bpf-linker"]
 
 [unstable]
 build-std = ["core"]

tamanoir-ebpf/rust-toolchain.toml

@@ -1,3 +1,3 @@
 [toolchain]
-channel = "nightly"
+channel = "nightly-2024-12-31" #we do not trust llvm20 yet
 components = ["rust-src"]