The C2 Matrix Lead Me To THIS PENTESTING DISTRO!

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
hey greetings everyone and welcome back to another great episode of my cyber security show I'm so glad you've joined me today because we are talking about one of my favorite topics when it comes to cyber security easily top three and that's going to be c2s command and control now what are we going to be doing with C2 Dan well we're not going to be necessarily diving into one but I kind of wanted to show you a resource and I found a new cool thing that was uh it was it was like a it was like a prize at the end of the rainbow for me as I was kind of exploring C2 land as it were and I was like I did not know this was a thing how did I not know this was a thing and you may be knowing what this is but maybe you don't so that's why I'm making the video and it's let's jump into this thing right I I'm not going to give it away right now on what exactly the thing it was I found but let's start with the C2 framework because maybe or framework the C2 Matrix of C2 Frameworks you see what I did there I I fell down the stairs and I landed on my feet uh but ultimately the C2 Matrix is a great tool so if you if you've not been familiar with it you're welcome enjoy you're going to love this right so let's let's hit that about page and let's see exactly what does this thing do what is the C2 Matrix so the C2 Matrix as you can tell from its very very small text if anybody knows anyone at the C2 Matrix you might want to tell them to you know change the font size on this mission statement it is a little ridiculous so let's make it human rable thank you and it says it is here's their mission statement right they're evaluating all c2s that's what they're trying to do that's what the intention of the C2 Matrix is so for that that's for you so if you need one not all c2s are made equally and that's not a bad thing that's cool to have that you know diversity of of different types of things because it's kind of like anything right someone asks you what's the best X you go if you wanted to do what with it in in what way are you looking for the best right so when it comes to c2s it says it is the Golden Age of C2 Frameworks command and control the goal of this site is to point you to the best C2 framework for your needs based on your adversary emulation plan and the target environment you're going to be working in so take a look at the Matrix or use the questionnaire to determine which one fits your needs because you might be like you know I've been using Cobalt strike and it's great I love it but you know what it doesn't it doesn't do really well here or there I wish it did this or maybe in this environment it's going to get smoked so fast you know it's malleable c2s you you could probably like you can fiddle around with it and make it not get smoked not get busted but what if you you just are looking you're shopping you're thinking what are what are the other options out there for me maybe maybe a brute retel is more along a posh C2 maybe I want to go something open source right sliver seems great Havoc plenty of of c2s out there to be had but I'm not really sure what does what and what goes where welcome to the C2 Matrix that is what it is saying and stating right here in its mission that it is that's why exists okay so that being said I've uh I've turned this into a mobile app as you can see I've got the lovely little drop down thing I guess we can do that and we can go to oh you got ask I think that's the questionnaire uh that can take you through trying to pick one out I'm I'm not going to use the questionnaire I'll let you go play around with that it's a nice little tool kind of gives you some options asks you some questions and then goes these C2 seem to fit what you're looking for so you handle that but let's take a look at what other op options we have we got documentation we got feedback we've got the guey which is the last option here but if I were to kind of bring this down there it is there's also this Matrix button which takes you to B it's a Google sheet of all these Matrix all these Frameworks I keep putting the two in the wrong spot you guys got to watch me like a hawk right so if you wanted to go to the guey maybe this is your cup of tea what it's going to do is going to list out a bunch of C2 Frameworks eventually or it's already there right and then you've got different tabs that you can explore you got information code in UI channels agents capabilities and the different types of support right so if I wanted to know okay just straight up informational what can I see about this and now that my I got to click out of that box and I can start to see okay appf it's uh the version that they review 1.3 that's good so maybe they're on a different rev and I'm like okay did they make some changes there looks like it runs in Docker we got Caldera seems to be a python U C2 Cobalt strike it's a compiled binary it's great everybody loves it right this is version reviewed is 2.0 or two uh we got Covenant so some of these might be behind the eightball but that's fine I I think that's fine and the reason I think that's fine well that might have a problem when it comes into capabilities and codeing you some of the the details about it but at least you have a kind of a starting point a list you kind of get an idea of what some of the capabilities are and ultimately I would be surprised to see useful capabilities have dropped off in in more current revisions instead it would be new things have been added too so you probably these are good starting spots regardless so that's cool I can see what all that stuff is I hit code and UI I can see a little more information about it I H channels I can see what channels it uses for for C2 Communications yes yes yes it doesn't like uh my my uh two finger scroll here so I'm going to kind of do that what else can we do we can hit agents we can see we've got uh in appell we've got agents for Linux and Mac OS but if I need Windows maybe Caldera is a little more my speed obviously old Cobalt strike is going to give me the windows but no Linux right so just again back to the idea is what's your poison what are you looking to do what your environment like and that's going to kind of help you steer you this is going to try to help steer you into the right C2 framework so a lot of cool ones out there uh let's take a look at capabilities right so we got custom profile and login custom profile is a really nice thing uh it's attack framework mapping or the attack the miter attack framework right you're familiar hopefully if not you should definitely take a look at that it's great for threat emulation okay these are the different ways in which we do things like initial compromise and see command and control and pivoting and post exploitation and all sorts of fun stuff right all right let's see here now that we've got that kind of out of the way you can take a look at that let's do one last thing I do want to go to the actual sheet so let's click on that if I can that M it just keeps scrolling right past me everybody I'm so sorry it I'm here's what I'm going to do here's what I'm going to do you want to play Let's Play There we go here's the actual Google sheet the dock uh it's not a dock it's a sheet right there it is so if you like a little more Excel looking environment to kind of look through this one cool thing about this I don't remember if it did this over there in the gooey but click gooey just so it stops complaining and keep capabilities yeah I don't see that here agents support maintained this is all good capabilities maybe no I don't see that here so this is one of the things that the actual Google sheet here is going to be a little more helpful with there is a price column let's kind of blow this up just a bit okay I got it I got it thank you I don't need this either there yes file looks suspicious I'm sure it does the current window is too small it it always is but let's kind of scroll through here and see some of these prices because you see that like brute retel here is commercial and it's 2500 bucks I almost guarantee that that is per license I'm not 100% on that because I haven't bought brute retell I haven't looked at pricing on their page but from my experience a lot of them are it's per it's per license per seat right so like Cobalt strike as we get there is now 5900 bucks at least according to this sheet I'm sure I I feel I have also another feeling that uh this Google sheet is updated more often than maybe the guey would be right because there's you know webd that's got to go along with doing all the update and this is just a sheet someone can maintain fairly simply and easily so look through here you get a nice list of things now I said there was a a treat right some gold at the end of the proverbial rainbow here and I'm not kidding around I discovered something as I was kicking around the C2 Matrix site here where is let's go let's just get this right here and let's get these tabs back to the top it's not going to do it is it it hits my guts that's fine get to drop down if you go to documentation which is very very nice lots of great information here and I was reading through this I'm on the first page here and I'm going through it here you'll find more detailed information there's the main site here's the Google sheet and it's kind of like breaking down the main site into um honestly in my opinion a much more usable uh fashion I don't really like their main site that much it's just not my kind of ux UI uh it's not for me it's not my cup of tea but I see there's the questionnaire and then it says right here for those new to command and control Frameworks we recommend you start with slingshot C2 Matrix uh C2 Matrix Edition virtual machine in a basic lab environment and I went what's that virt what are you talking about virtual machine what is this so I right click I click in new tab I say what are you it says Hey Sans slingshot C2 Matrix VM I'm like what is this again a virtual machine image to try some of the most popular commic control Frameworks you mean they're already installed they're like yes they're already installed here's all the ones that are already installed Covenant Empire with Star Killer Havoc coed uh or coatic I'm not sure how you actually pronounce that uh Merlin Metasploit Mythic Nim plant Posh C2 and sliver I'm like that's a lot of Frameworks right there some of them I've I've like not really played with like let me think of what ones so I've done a little bit with Havoc not a ton I'm like and it was kind of a pain to get installed and you're telling me it's pre-installed right Empire with star killer that was uh now that Empire has Star Killer and all that stuff it's really cool with that web goey that they got like I don't think I've messed with Covenant and I'm like oh this would be a great way to kind of play around with all these and I don't have to worry about going through installation problems if there are and it colli is pretty good at at the ones that it supports it just apt get install bam and they kind of run but if you're not running collie and you're doing something different they they can be a bit of sometimes can be a bit of a bear so I downloaded this and you'll never guess what we've actually been using it the entire time I just jumped over to a different um desktop so um let's see here let's go to this it's got a lot of really familiar looking feel I just recently jumped to this from parrot OS great pentesting Linux drro seems very similar to that it looks like it is using mate or mate again I'm not really 100% on how you pronounce that cuz the people that invented it I haven't read that they've told me what it is if you know throw that down in the comments that's interesting information but like I said it's very similar to that because it is the same desktop environment you go to this slingshot menu and there you go bunch of stuff installed right there's Mythic there's Covenant there's Havoc right and you can have her to discover plus a bunch of other pentesting tools there's sliver there's Posh C2 right we've got Veil we've got a harvester we got a bunch of like I said and other great tools already built in so I mean if you're looking for a pen testing drro or even like a more like because it has all these C2 Frameworks red team drro slingshot might very well be what you're looking for and you get to play around with all these things you don't have to go through the some of these things can be really difficult to install yeah you can struggle your way through it and get to the end but sometimes you just want to drop down open the laptop and go run this and it runs right there there we go so slingshot might be for you all right let's open this up let's so cool thing is if you go back to this the C2 Matrix documentation say you pick one you like right let's say Havoc right like I said I played around with Havoc a little bit let's take a look at this so if you're unfamiliar with Havoc go over here to this leftand slider menu and over here you can click on Havoc and this is where it gets fun it gets really nice documentation tells you where the G the wiki is how to run the Havoc team server cool I literally can copy and paste this copy run over here open a terminal blow it up I'm going to make it to where you can see it shift control V to paste it in Fire and forget look at that it's running man don't you love it it when a plan comes together it's super sweet so now the team server is running I can now jump up over here to actually what I should do is open a new terminal I got the server running there we can just leave that and I will sudu I think it's an opt SL Havoc slash oh what is it it is clients and it is Havoc I believe we are getting close if not correct actually like I said it's been a hot minute since I messed with this run the Havoc client booah Havoc client Su so again copy what am I trying to do the hard way and remember everything Daniel you're dumb you're absolutely right uh let's do it the easy way and just copy pasta that sucker bada bing here it comes click new profile as see if uh it connects okay yeah I've noticed it does this from time to time let's uh rerun that get this and change this password I I don't think the password is right password one two three four I believe it is there we go and now I'm in cool I can go to attack I can create listeners go to create a listener hit add right and this is like I this is very Cobalt strike is if you've never messed with Cobalt strike because it cost a lot of money uh Havoc is very similar to it in look and feel it doesn't have all the same capabilities at least not from the cursory glance that I've seen but it has a lot of them it has a lot of good capabilities so it's super useful we'll just call this like you know web Beacon and payload https that's fine but you got HTTP htps you got SMB and external uh configure the hosts so so um I guess I'll just add that one that's fine do a round robin you got all these different options on Port 443 which is normal I can add headers I can add URLs I can do all sorts of fun stuff my biggest complaint with this thing and it always has been is it kind of overruns I can't I can't get to the bottom of this right I can't resize it it doesn't does it will it let me resize it let me resize it that way but not down so I can't really see if I can get to the okay do the thing anyway I think I was close boo it that's weird enter hey there we go so now we got the listener going and now I can create a payload I go to attack hit payload I can start messing with this I can use the demon which is its def default agents got the the web Beacon already in there what architecture I need x64 I'm going to create a Windows exe I can use a dll I can create Shell Code I can do all sorts of stuff and now you'll notice this was just drop right in enjoy Daniel here's a here's Havoc C2 play around learn B B I love this right this is so great I'm done I can mess with any of these things I'm just going to like hit generate and Bam it's starting to build it's compiling The Source once it's done I have an exe in my system that I can now drop on whatever my targets are they get executed I'll get a shell I'll get i'll get a beacon I can then create a shell or I can do command and control normally like like you normally do so really cool right not the only game it down like like it has so many of those c2s in there right let's go back which was back to the top I think it was here what the other ones right Empire with Star Killer love that one covenant's great oh that was an accident uh Merlin is also great Metasploit is in there right and it should be because a lot of a lot of folks still use metas it can be useful I I was talking to Mike Saunders from Red Siege about this he's like I got a friend that's all he uses Med plate he loves it so don't don't downplay the old Metasploit got Mythic Posh C2 another really great one sliver I've used sliver a bit I like sliver a lot so man if you're looking to play around with something or you're looking for a new drro for pentesting red teaming slingshot right there you go well that's it ladies and gents that mean a pretty straightforward episode today hopefully if you've never heard of the C2 Matrix now that's another great tool in your toolkit you can kind of start looking through and finding the C to framework that is right for you uh and slingshot right tell me slingshot I I've really enjoyed it I've been a longtime Ki user I've used parrot for almost exclusively all last year that was my go-to that's all that's all I I I used for like just about anything and now I'm going to I'm going to ride and die with slingshot for a little while and see how that goes so far so good get a thumbs up seal of approval at this point haven't seen anything hanky it's got a lot of great tools already built in installing tools that aren't built in has gone fairly well so far still early in the game things may change as they go but uh maybe I'll do a review on that after a few months of of messing with this and let you know more of my experience with it but uh yeah that's all I got for today hopefully you really enjoyed this episode if you did if you found some value and what you saw today do me the the immense favor reach down there find that that thumbs up and smash that sucker because that really helps the channel subscribe if you want to see more don't forget the notification Bell and all the fun stuff that goes along with that I think that's all the pitch I got for you today thanks again for joining us and until next time keep hacking
Info
Channel: Daniel Lowrie
Views: 1,637
Rating: undefined out of 5
Keywords: cybersecurity, cyber, information security, infosec, penetration testing, pentesting, pentester, hacking, hacker, command and control, c2, C&C, C2, cobalt strike, brute ratel, ethical hacking, ethical hacker, kali linux, parrot os, red team, blue team, purple team, c2 framework
Id: 98GOxJU-iws
Channel Id: undefined
Length: 21min 13sec (1273 seconds)
Published: Mon Jan 29 2024
Related Videos
Let's Build: Automate ANYTHING With AI Agent Teams (Step-by-Step)
Matthew Berman
112K
Revisiting Parrot OS
HackerSploit
74K
Can this BYPASS Windows Defender???
Daniel Lowrie
3.8K
HAVOC C2 - Demon Bypasses Windows 11 Defender
Rojahs Montari
2.8K
Super Fun Chat-GPT CTF - "Gandalf" by Lakera.AI
Daniel Lowrie
2.4K
SSRF Against Local Server- PortSwigger Web Security Academy Series
Daniel Lowrie
534
Brute Force Enumeration of Username & Password - PortSwigger Web Security Academy Series
Daniel Lowrie
1K
Red Teaming With Havoc C2
CYBER RANGES
11K
SQL Injection Login Bypass - PortSwigger Web Security Academy Series
Daniel Lowrie
1.1K
Build A Buffer Overflow Exploit To Learn Golang - Project-Based Learning
Daniel Lowrie
1.8K
Create Custom FILELESS MALWARE on FULLY PATCHED WINDOWS 10!
Daniel Lowrie
11K
Scientist think THIS is Alien?!
Interstellar News
84K
IDOR Hacking For Privilege Escalation - PortSwigger Web Security Academy Series
Daniel Lowrie
738
This is the most popular HACKING TOOL! | Cobalt Strike Stager Malware Analysis
Jai Minton
1.4K
Magnific AI Relight is Worse than Open Source
Andrea Baioni
4.4K
You have to look out for these hacks in 2024! (plus get FREE training)
David Bombal
62K
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.