Question 1

How to install Empire on Ubuntu?

Accepted Answer

Run the install script with sudo ./setup/install.sh or use the Docker image empireproject/empire, as per the README's quickstart guide. Ensure you're on a supported OS like Kali, Debian, or Ubuntu for best results.

Question 2

Is Empire still maintained in 2024?

Accepted Answer

No, the project is explicitly marked as no longer supported in the README, meaning it lacks active development, updates, and security patches, so use it cautiously in modern environments.

Question 3

Empire vs Cobalt Strike for red teaming?

Accepted Answer

Empire is open-source and focuses on stealth with pure agents, but it's unsupported and outdated. Cobalt Strike is commercial, actively maintained, and offers more features, making it better for professional teams with budgets.

Question 4

How to create custom modules in Empire?

Accepted Answer

Base your module on the provided PowerShell or Python templates in the lib/modules directory, cite previous work in comments, and test thoroughly with an Empire agent before submitting, as outlined in the contribution rules.

Question 5

Can Empire agents evade antivirus detection?

Accepted Answer

Yes, it uses techniques like pure-PowerShell agents without powershell.exe and cryptologically-secure communications to enhance stealth, but effectiveness may vary due to its outdated code and lack of updates.

Question 6

What operating systems does Empire support?

Accepted Answer

Empire provides agents for Windows and Linux/OS X, but troubleshooting is only officially supported for Kali, Debian, or Ubuntu, as noted in the contribution guidelines.

PowerShellEmpire

What is PowerShellEmpire?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions