sshauth command output not very good looking. #59
Comments
|
Thanks for opening an issue! The browser script is currently using the same rendering as the other virtualized components within Mythic, so things like wrapping and line height are static. When you say it could be better, can you elaborate a bit on what you're looking for? Do you want a better way to see the output of commands? Are you often running a command on a single server, testing access, or running commands on multiple servers? |
|
Yes, i meant better way to see the output of commands. Currently, for long outputs i triple click the output field and paste text into notepad, then output is shown same way as in terminal (taking into account \r\n). With sshauth in most of the cases i run some commands on remote systems. |
|
I can add a button there that allows you to copy out the entire output more easily. Out of curiosity though, are you using this to run a bunch of ssh commands on a host, or are you using it more as a way to test access/laterally move? |
|
https://github.com/MythicAgents/poseidon/actions/runs/10709004720 If you're using this as more of a regular way to run ssh commands on a single host though, then I think it's better if I make a more dedicated ssh command (or better yet, use the |
|
Thanks for "copy" button!
|
|
Gotcha, that makes sense. I'll look into making a dedicated |
|
The |
|
I just added a |
|
Tried remote hosts, localhost - still "fetching" |
|
It should just show that until there's some sort of data to show. What's the status of the task you're issuing? It should return errors for connectivity issues (or auth issues) and a prompt for success. |
|
Once i run this command: I get "Fetching Interactive Task data" popup, but i'm not able to type any ssh commands. |
|
Is you do the same host and everything with the sshauth command then you get your output? Does that account have a login shell associated with them? It's weird that it would hang like that |
|
Same creds on the same host: sshauth - works, ssh - not. ssh: p.s recorded a video ssh.mp4 |
|
What kind of server are you ssh-ing into? I can try testing with that specific kind on my end to see if I can replicate. I was testing ssh-ing into a Mac, but maybe it's different with something like kali or certain Linux boxes. Do you get the same issue if you ssh in as a non-root account? |
|
I have poseidon payload running on Debian 11 and connecting with When tcpdump'ing and running sshauth command - i see ssh cipher exchange in tcpdump and get results from With Both commands i've tried on completely new callbacks without any previous commands. |
|
Another thing i've noticed with |
|
Hmm ok I'll look into it, they're both using the same library, so it's odd that one works and one doesn't. That other thing sounds like sshauth isn't properly closing the tcp connections and there's a keep alive still going. I'll look into that too |
|
if you run |
|
Ah yeah jobs command shouldn't include the jobs command itself |
|
it shows all previous
|
|
https://github.com/MythicAgents/poseidon/actions/runs/10746572112 |
|
Thanks!
With p.s. All this started working only after i pruned all docker images. Before that, upgrading poseidon (with -f option), still had some issues with ssh, jobs and sshauth commands, despite that Mythic showed correct Poseidon's version '2.1.6'. |
|
What would be the correct way to update |
|
You should be able to just re-install it: and that'll delete the existing container, delete the existing volume, and fresh install it |
I'm using latest poseidon on latest Mythic.
sshauthcommand output could be more beautiful.The text was updated successfully, but these errors were encountered: