Awesome
octohook
Git Web Hook Tunnel for C2
Install
# apt-get update && apt-get upgrade -y
# apt-get install python3-pip git -y
# pip install --upgrade pip
# pip install virtualenv
# virtualenv -p python venv
# . venv/bin/activate
# git clone https://github.com/dsnezhkov/octohook
# pip install prompt_toolkit PyGithub bottle pygments pyaml delegator.py
or
pip install -r doc/requirements.txt
Setup
-
Login as sevice GH account.
-
Generate app teken as per: https://github.com/settings/tokens/new
-
update git_app_token: '86c0ec38b90909c4fbb1cf7f4e20c8f7f451' in config/client.yml and config/server.yml
-
set your agent ids on server and client Eg. agentid: 'b932e9f5'
-
generate keys/server.pem
./utils/cr_cert.sh
-
First client or server creates the repo git_repo_name: 'rendezvous'
-
Setup initial webhook(s): https://github.com/your-id/rendezvous/settings/hooks/new
Set
Payload URL: https://IP-or-HOST:PORT/route/where IP is the IP of your OC web service, PORT it listens on, and /route/ is the hook route specified inhook_route: '/server/'directive in configuration file.Set:
Content-type: application/json" By default, we verify SSL certificates when delivering payloads. " Disable for demo, enable in prod (letsencrypt) you can opt to receive all events but you may just 'Choose Let me select individual events.'
OC needs at a minimum: "Issue comment", "Issues". Make sure you start your octohook server on the Payload URL above upon Webhook creation. IF set to "Active" "We will deliver event details when this hook is triggered." a ping registration request will be sent out to the OC server.Once you see "Green checkmark" in webhooks, you are registered. If not - check your params, and "redeliver" the ping.
Repeat setup for other webhooks if needed ( bidirectional RTM and swarm (future) )
Start Server:
python octohook.py ./config/server.yml
Start Client
python octohook.py ./config/client.yml
TODO
- fix file put on python3
- open issue with delegator.p maintainer on .chain methon under python3