Skynet C2

It's always great to watch your dream coming to life!

During the past 5 months I've been working on my own C2 Framework, that will be the ultimate weapon to command & control Windows workstations by using a friendly interface, while bypassing all high-end EDR solutions out there.

This was finally achieved under the code name Skynet.

The framework is controlled via CLI or a WebUI which is still under development.

Among its features:

• Stage 0 Dropper
• Botnet functionality
• Proxy-Aware
• Upload/Download files
• Automatic Persistence
• All traffic is encrypted in two stages - ASymmetric and then Symmetric
• Custom HTTP(s) traffic transport
• Credentials extraction - lsass process dumping and server-side parsing + Chrome passwords extraction
• Loading and running PS modules and commands without running PowerShell.exe from memory, including AMSI bypass
• UAC Bypass
• Dynamic tunneling
• Self-termination (modifiable remotely)
• Command log
• Hidden process execution

WebUI POC (Bitdefender Total Security):

CLI PoC (ESET):

#cybersecurity #commandandcontrol #c2 #informationsecurity #malware #newproject