pkhazov/Sigma-C2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
82033c21d5bfdd8753ad5089fad64c71b69efdfa
Sigma-C2/agent
History
Pavlo Khazov 82033c21d5 Agent and BeaconC have new injection capabilities. 
"inject" - writes shellcode into process, which can be specified by PID.
"spawn" - launches new suspended process, writes shellcode and creates thread. PPID can be specified.
Shellcode is encrypted on server, decrypted right before writing to memory and cleared right after it. Tiny-AES is used for decryption.
Modules are now dynamically loaded from folder and not harcoded.
2025-04-21 15:45:19 +02:00
..
aes.c
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
aes.h
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
agent.c
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
commands.c
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
commands.h
Added task reporting after modules execution.
2025-04-08 14:42:11 +02:00
config.h
Added prototype of socks5 proxy on agent. Command "proxy start" starts listening on server:30900 and tunnels through target system, where agent runs. Current implementation support only 1 connection. Multiplexing to be added. Custom ports to be added.
2025-04-15 10:42:21 +02:00
files.c
Added task reporting after modules execution.
2025-04-08 14:42:11 +02:00
files.h
Added task reporting after modules execution.
2025-04-08 14:42:11 +02:00
info.c
info.h
keylogger.c
Okay, I give up on keylogger. Currently I cannot implement auto keystrokes reporting after keylogger shuts down.
2025-04-08 17:10:32 +02:00
keylogger.h
Makefile
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
modules.c
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
modules.h
Agent and BeaconC have new injection capabilities.
2025-04-21 15:45:19 +02:00
navigation.c
Local file path checking in "upload" command.
2025-04-09 18:24:45 +02:00
persistence.c
persistence.h
processes.c
Added "ps" command to get list of processes on target.
2025-04-18 21:35:52 +02:00
socks5_agent.c
Little enchancement for proxy server and some performance testing.
2025-04-15 22:16:39 +02:00
socks5_server.c
Little enchancement for proxy server and some performance testing.
2025-04-15 22:16:39 +02:00
socks5_server.h
Added prototype of socks5 proxy on agent. Command "proxy start" starts listening on server:30900 and tunnels through target system, where agent runs. Current implementation support only 1 connection. Multiplexing to be added. Custom ports to be added.
2025-04-15 10:42:21 +02:00
transport_tcp.c
transport_wolfssl.c
Little enchancement for proxy server and some performance testing.
2025-04-15 22:16:39 +02:00
transport.c
transport.h
upload.c
Implemented file uploading to target machine with command "upload"
2025-04-09 16:19:51 +02:00