Packages and Binaries:

powershell-empire

PowerShell and Python post-exploitation agent
This package contains a post-exploitation framework that includes a pure-PowerShell2.0 Windows agent, and a pure Python Linux/OS X agent. It is the merge of the previous PowerShell Empire and Python EmPyre projects. The framework offers cryptologically-secure communications and a flexible architecture. On the PowerShell side, Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitation modules ranging from key loggers to Mimikatz, and adaptable communications to evade network detection, all wrapped up in a usability-focused framework.

Installed size: 49.87 MB
How to install: sudo apt install powershell-empire

Dependencies:
  • default-mysql-server
  • git
  • kali-defaults
  • pyinstaller
  • python3
  • python3-aiofiles
  • python3-bcrypt
  • python3-cryptography
  • python3-docopt
  • python3-donut
  • python3-dropbox
  • python3-fastapi
  • python3-flask
  • python3-flask-socketio
  • python3-humanize
  • python3-jinja2
  • python3-jq
  • python3-jwt
  • python3-macholib
  • python3-md2pdf
  • python3-netaddr
  • python3-netifaces
  • python3-obfuscator
  • python3-openssl
  • python3-packaging
  • python3-passlib
  • python3-prettytable
  • python3-prompt-toolkit
  • python3-pycryptodome
  • python3-pydantic
  • python3-pydantic-settings
  • python3-pydispatch
  • python3-pymysql
  • python3-pyparsing
  • python3-pyperclip
  • python3-python-multipart
  • python3-pyvnc
  • python3-requests
  • python3-requests-file
  • python3-secretsocks
  • python3-setuptools
  • python3-simplejson
  • python3-socketio
  • python3-sqlalchemy
  • python3-sqlalchemy-utc
  • python3-starlette
  • python3-stix2
  • python3-tabulate
  • python3-tk
  • python3-urllib3
  • python3-uvicorn
  • python3-websocket
  • python3-websockets
  • python3-websockify
  • python3-yaml
  • python3-zlib-wrapper
  • starkiller
  • sudo
powershell-empire
root@kali:~# powershell-empire -h
usage: empire.py [-h] {server,setup} ...

positional arguments:
  {server,setup}
    server        Launch Empire Server
    setup         Setup the data directories for Empire

options:
  -h, --help      show this help message and exit
starkiller
root@kali:~# starkiller -h
┏━(Message from Kali developers)
┃
┃ The command starkiller is deprecated. Please use starkiller-start instead.
┃
┗━
starkiller-start
root@kali:~# starkiller-start -h

┏━(Message from Kali developers)
┃ 
┃ Service status:
┃   * powershell-empire.service - Powershell-Empire service
┃        Loaded: loaded (/usr/lib/systemd/system/powershell-empire.service; 5:185mdisabled; preset: 5:185mdisabled)
┃        Active: active (running) since Thu 2026-05-28 06:16:39 EDT; 2s ago
┃    Invocation: ae82a2a07c64424982edf654d46f5b0a
┃      Main PID: 22230 (python3)
┃         Tasks: 65:245m (limit: 6535)
┃        Memory: 129.3M (peak: 129.4M)
┃           CPU: 1.345s
┃        CGroup: /system.slice/powershell-empire.service
┃                `-5:245m22230 python3 empire.py server
┃   
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Starkiller enabled. Loading. 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Starkiller served at the same ip and port as Empire Server 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Starkiller served at http://localhost:1337/ 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Started server process [22230] 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Waiting for application startup. 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Application startup complete. 
┃   May 28 06:16:40 kali powershell-empire[22230]: [INFO]: Uvicorn running on http://0.0.0.0:1337 (Press CTRL+C to quit) 
┃   May 28 06:16:41 kali powershell-empire[22230]: [WARNING]: Invalid HTTP request received. 
┃   May 28 06:16:41 kali powershell-empire[22230]: [INFO]: 127.0.0.1:52132 - "GET / HTTP/1.1" 200 
┃   May 28 06:16:41 kali powershell-empire[22230]: [INFO]: Shutting down 
┃ 
┃  Default credentials:
┃    user: empireadmin
┃    password: password123
┃ 
┗━
starkiller-stop
root@kali:~# starkiller-stop -h

┏━(Message from Kali developers)
┃ 
┃ Service status:
┃   * powershell-empire.service - Powershell-Empire service
┃        Loaded: loaded (/usr/lib/systemd/system/powershell-empire.service; 5:185mdisabled; preset: 5:185mdisabled)
┃        Active: inactive (dead)
┃   
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Waiting for application shutdown. 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Empire shutting down... 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Shutting down listeners... 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Shutting down plugins... 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Shutting down SocketIO... 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Application shutdown complete. 
┃   May 28 06:16:43 kali powershell-empire[22356]: [INFO]: Finished server process [22356] 
┃   May 28 06:16:43 kali systemd[1]: powershell-empire.service: Deactivated successfully.
┃   May 28 06:16:43 kali systemd[1]: Stopped powershell-empire.service - Powershell-Empire service.
┃   May 28 06:16:43 kali systemd[1]: powershell-empire.service: Consumed 1.348s CPU time over 2.224s wall clock time, 129.3M memory peak.
┃ 
┗━




Updated on: 2026-May-25