#c2matrix search results
First @RSAConference session done! Released new #c2matrix VM and showed a sold out workshop how to use some popular C2s!
FYI, the #C2Matrix Google Sheet contains links that may be considered malicious: docs.google.com/spreadsheets/d…
Added OnlyShell to #C2Matrix "A powerful Go-based multi-shell handler for managing multiple reverse shell connections simultaneously with features like shell type detection, background management, command broadcasting, and real-time interaction." github.com/malwarekid/Onl…
I see we went with CTI drama over OST drama right before @RSAConference this year. Just putting the finishing touches on the #C2Matrix workshop that uses OST for attack and intro to Sysmon for detect. See you all soon! @c2_matrix
Added Tuoni to #C2Matrix today github.com/shell-dot/tuoni
Added Orsted C2 to #C2Matrix Nicely documented too github.com/almounah/orsted almounah.github.io/orsted-doc/int…
almounah.github.io
Introduction
An introduction of Orsted C2
We are now at 151 C2s in the #C2Matrix I think we started with less than 20 in 2019! docs.google.com/spreadsheets/d…
Added the new MeetC2 as MeetingC2 to #C2Matrix, it is our first name collision. Look at the C2Matrix before naming your C2 ;) docs.google.com/spreadsheets/d…
Added Loki to #C2Matrix Node JS C2 for backdooring vulnerable Electron applications: github.com/boku7/Loki
Added peeko to #C2Matrix a browser-based XSS C2 for stealthy internal network exploration via infected browser: github.com/b3rito/peeko
New C2 dropped over night. The Skinny Guerrilla Command and Control (SGCC) gets its name from its goal to generate minimalist implants with only the commands necessary for the operator to accomplish their objective. Added to #C2Matrix github.com/JCSteiner/SGCC…
Added Google Calendar RAT to #C2Matrix While just a POC, it is an interesting one to look at for evasion and blending in (depending on your target). github.com/MrSaighnal/GCR…
Added Realm to #C2Matrix Anyone try this one out yet? github.com/spellshift/rea… Seems relatively well documented docs.realm.pub/user-guide/eld…
Added github.com/Faisal-P27/WAR… by @Faisal_P27 to #C2Matrix WAREED is a C2 that utilizes DNS. Designed to minimize communication and limit data exchange, it is intended to be a first-stage C2 to persist in machines that don't have access to the internet via HTTP/HTTPS.
With C2s being taken down from GitHub (Periscope, Faction, etc), should #C2Matrix fork and clone repos locally?
[🔴Panorama de tous les Command&Control] #C2Matrix #C2 #emulation docs.google.com/spreadsheets/d… En préparant une de mes prochaines interventions, je suis tombé sur cette mine d'or ! 1doc qui compile l'ensemble de (presque) tous les C&C existants ! Le document est très détaillé.
Here is the full talk that covers only a few of C2s tracked in #C2Matrix youtu.be/kVYlYAR2R7E?si… Should have given us a shout out as a resource with some more feature/capability based comparisons (we cover GUI and dark mode as well 😂)
youtube.com
YouTube
Knocking Out Post-Exploitation Kits
Added Claude-C2 to #C2Matrix Have not tried it, let us know if you do! github.com/dmcxblue/Claud…
Added OnlyShell to #C2Matrix "A powerful Go-based multi-shell handler for managing multiple reverse shell connections simultaneously with features like shell type detection, background management, command broadcasting, and real-time interaction." github.com/malwarekid/Onl…
Added Orsted C2 to #C2Matrix Nicely documented too github.com/almounah/orsted almounah.github.io/orsted-doc/int…
almounah.github.io
Introduction
An introduction of Orsted C2
Added the new MeetC2 as MeetingC2 to #C2Matrix, it is our first name collision. Look at the C2Matrix before naming your C2 ;) docs.google.com/spreadsheets/d…
Added Tuoni to #C2Matrix today github.com/shell-dot/tuoni
New C2 dropped over night. The Skinny Guerrilla Command and Control (SGCC) gets its name from its goal to generate minimalist implants with only the commands necessary for the operator to accomplish their objective. Added to #C2Matrix github.com/JCSteiner/SGCC…
Added Claude-C2 to #C2Matrix Have not tried it, let us know if you do! github.com/dmcxblue/Claud…
We are now at 151 C2s in the #C2Matrix I think we started with less than 20 in 2019! docs.google.com/spreadsheets/d…
Added Loki to #C2Matrix Node JS C2 for backdooring vulnerable Electron applications: github.com/boku7/Loki
Added peeko to #C2Matrix a browser-based XSS C2 for stealthy internal network exploration via infected browser: github.com/b3rito/peeko
Villain was added to #C2Matrix thanks to @pedrinazziM for letting us know! Villain is a high level C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features: github.com/t3l3machus/Vil…
@c2_matrix I think github.com/t3l3machus/Vil… by @t3l3machus should be included in the matrix :) Plus, I noticed going through the list of C2s that: - Violent Fungus; - VirusTotalC2; - WarFox; - VoidRAT; - redViper repositories are not available anymore on GitHub.
Added github.com/Faisal-P27/WAR… by @Faisal_P27 to #C2Matrix WAREED is a C2 that utilizes DNS. Designed to minimize communication and limit data exchange, it is intended to be a first-stage C2 to persist in machines that don't have access to the internet via HTTP/HTTPS.
Added Realm to #C2Matrix Anyone try this one out yet? github.com/spellshift/rea… Seems relatively well documented docs.realm.pub/user-guide/eld…
Added Google Calendar RAT to #C2Matrix While just a POC, it is an interesting one to look at for evasion and blending in (depending on your target). github.com/MrSaighnal/GCR…
Here is the full talk that covers only a few of C2s tracked in #C2Matrix youtu.be/kVYlYAR2R7E?si… Should have given us a shout out as a resource with some more feature/capability based comparisons (we cover GUI and dark mode as well 😂)
youtube.com
YouTube
Knocking Out Post-Exploitation Kits
FYI, the #C2Matrix Google Sheet contains links that may be considered malicious: docs.google.com/spreadsheets/d…
Yep and thanks, it is on #C2Matrix docs.google.com/spreadsheets/d…
With C2s being taken down from GitHub (Periscope, Faction, etc), should #C2Matrix fork and clone repos locally?
We decided to not add EDRs, XDRs, SOARs, or RMMs to the #C2Matrix
Nuclei's latest update has C2 detection for some of the most popular C2s in #C2Matrix Blog: blog.projectdiscovery.io/hunting-c2-ser… Github: github.com/projectdiscove…
Covenant, Empire, Koadic, Metasploit, Merlin, Mythic, Posh, Shad0w, Silent Trinity, and Sliver (in alphabetical order) are coming preinstalled to the next version of the Slingshot #C2Matrix edition VM. Are we missing anything you really like but hate installing?
Received feedback to add Payload Format and Packaging to #C2Matrix Thoughts? Example of formats: Binary, ShellCode String, PowerShell, Python, JavaScript, VBScript, VBA, C, C#, Java Example of packaging: HTA, XSL, PowerShell One-Liners, XML COM Scriptlets, Windows PE Stager
.@brysonbort and @jorgeorchilles are giving a talk about the #C2Matrix on Tuesday at 4:30pm at @artintoscience. @c2_matrix
We added this resource as a column in the #C2Matrix Thanks for the contribution to the community! docs.google.com/spreadsheets/d…
I created a new project called C2-Matrix-Indicators that aims to take a code review approach to extract detections/indicators out of the C2's listed in the @c2_matrix Feedback and contributions are highly appreciated. LINK: github.com/nasbench/C2-Ma… #BlueTeam #detection #infosec
Interested in beta testing the latest @SANSInstitute Slingshot #C2Matrix Edition VM? Send a DM @jorgeorchilles Plan is to release @RSAConference You can see some old and new C2s preinstalled for you: covenant empire havoc koadic merlin metasploit mythic nimplant posh sliver
FYI, the #C2Matrix Google Sheet contains links that may be considered malicious: docs.google.com/spreadsheets/d…
YES!!! #C2Matrix account is back!!! Too bad we did not have it during our @BlackHatEvents Arsenal talk, but at least we got it back!! @jorgeorchilles @brysonbort @Adam_Mashinchi
You asked and we listened! #C2Matrix now has a "Detection" section. So far, we have links to @leekirkpatrick4 RSA Netwitness posts on detecting various C2s. We plan to add more so let us know of resources and feedback. @jorgeorchilles docs.google.com/spreadsheets/d…
We are launching something awesome on Wednesday. Any #C2Matrix contributors have spare cycles to do QC? DM me and please RT register.gotowebinar.com/register/17388… @TimMedin @cabbagesalad2 @leekirkpatrick4 @Adam_Mashinchi @busterbcook @0sm0s1z @dmay3r @malcomvetter @kevinlustic @jorgeorchilles
YES! #C2Matrix was accepted for Blackhat Arsenal 2020! @jorgeorchilles and @brysonbort will be presenting virtually. Very happy the industry found this tool useful and has contributed so much in so little time. Always looking for more contributions and feedback 🙌🙌
The feeling you get when @olafhartong follows your project! Let's add some detection columns to #C2Matrix @brysonbort @jorgeorchilles
It is happening!!! #C2Matrix will be presented at Blackhat Arsenal by @jorgeorchilles & @brysonbort Will be recorded so we will have the entire time for Q/A and interact with attendees!! Blackhat Arsenals is FREE this year! Hope to see you there! blackhat.com/us-20/arsenal/…
First @RSAConference session done! Released new #c2matrix VM and showed a sold out workshop how to use some popular C2s!
It's out! #C2Matrix @SANSPenTest #SANSHackFest Follow @c2_matrix for updates A collaborative evaluation of all available c2 frameworks including a decision tool for selecting the right tool for your needs.
Tomorrow @brysonbort and @jorgeorchilles are giving a talk about the #C2Matrix at @artintoscience. @c2_matrix #ACoD
New blog post by @brysonbort - From Moonshot to Slingshot (@c2_matrix Edition). The virtual machine is now available. scythe.io/blog/from-moon… #C2Matrix @jorgeorchilles @NonVictus
Something went wrong.
Something went wrong.
United States Trends
- 1. Penn State 19.2K posts
- 2. Mendoza 16.1K posts
- 3. Gus Johnson 4,376 posts
- 4. #iufb 3,403 posts
- 5. Omar Cooper 6,143 posts
- 6. $SSHIB 1,683 posts
- 7. Sunderland 143K posts
- 8. Jim Knowles N/A
- 9. James Franklin 6,493 posts
- 10. Texas Tech 12.3K posts
- 11. Sayin 60.8K posts
- 12. Happy Valley 1,526 posts
- 13. Arsenal 241K posts
- 14. WHAT A CATCH 10.2K posts
- 15. Charlie Becker N/A
- 16. Jeremiah Smith 2,369 posts
- 17. St. John 7,745 posts
- 18. CATCH OF THE YEAR 3,585 posts
- 19. #GoDawgs 4,552 posts
- 20. #WeAre 1,101 posts