Empire

E192911

Empire is a post-exploitation and command-and-control framework commonly used for penetration testing and red team operations.

All labels observed (1)

Label Occurrences
Empire canonical 1

How this entity was disambiguated

Statements (50)

Predicate Object
instanceOf command-and-control framework
penetration testing tool
post-exploitation framework
red team tool
hasComponent Empire agent
Empire server
listener
module
stager
hasInterface REST API
command-line interface
isUsedBy offensive security professionals
penetration testers
red team operators
isUsedFor covert command and control
offensive security testing
post-compromise operations
providesCapability PowerShell remoting
command and control
credential harvesting
data exfiltration
file management
keylogging
lateral movement
obfuscated payloads
persistence
post-exploitation
privilege escalation
shell command execution
situational awareness
supportsCommunicationChannel HTTP
HTTPS
named pipes
staged payloads
stager-less payloads
supportsFeature agent management
listener management
modular extensions
multi-user collaboration
scriptable automation
tasking and job tracking
supportsLanguage PowerShell
Python
supportsOperationType adversary emulation
penetration test
red team engagement
supportsPlatform Linux
Windows
macOS
usesArchitecture client-server

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Kali Linux includesTool Empire