Skip to content

Tuoni 0.12.0

Keylogger, Explorer Highlighting, Privilege Commands & More!

🆕 Filename via HTTP listener

Filename via HTTP listener

The HTTP listener now supports specifying the filename for the served payload. This ensures that when the payload is downloaded, the browser or tool sees the intended filename, improving operational security and user experience.

🆕 Keylogger

Keylogger

Tuoni Commercial now includes a Keylogger command. Capturing keystrokes allows for tracking user activity and harvesting credentials directly from the target machine, streamlining your post-exploitation workflow.

📋 Full Changelog

🖥️ Client

  • explorer.exe is now highlighted in the ps command output
  • bugfix for terminal crash when agent metadata does not have IP set to better support 3rd party agents
  • Users view now has confirmation box when trying to disable your own account
  • Added search for "hosts" and "credentials" view
  • Improved hosts view sorting to sort correctly by IP addresses

⚙️ Server

  • Added API endpoint to clear agent queue
  • Supports agent communication encryption in CBC and GCM (used to be only CBC)
  • Payload plugins are now initialized before listener and command plugins
  • Add create/update timestamps to API for each command result entry
  • Add option for command plugins to hide some result entries from API response

🔒 Commercial

  • Added keylogger windows command
  • Added memory-layout command
  • Fix token not applying for plugin commands correctly for commercial agent
  • screen-tracker command now prints out the correct count for screenshots taken
  • Improved DNS listener
  • Added native privilege-list command to commercial agent (current works with process token only)
  • Added native privilege-enable command to commercial agent (current works with process token only)
  • Added native privilege-disable command to commercial agent (current works with process token only)
  • Fixed command stopping handling issues with some commands

Misc

  • added 2 new launchers shell-dot/tuoni#86 by @palangosjuze
  • Improve licence key validation shell-dot/tuoni#89 by @AllRWeak
  • added token-from-handle command that can be used with token handles created by BOF's or .NET code
  • Commands shellcode can provide new token directly to agent
  • Upgraded agent communication encryption to GCM

🏗️ SDK 0.12.0 Released!

Community

Our Discord Community is now live! Join us to ask questions, share feedback, and connect with other Tuoni users.

For a complete list of changes, visit our GitHub release page.