Python Server for PoshC2
Switch branches/tags
Nothing to show
Clone or download
benpturner
Latest commit 37e1e2c Dec 12, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Files Removed process start for Netsh.exe on non migrate executable Nov 20, 2018
Images Initial Commit Jul 23, 2018
Modules Updated Get-IPAddress Dec 7, 2018
.gitignore Initial Commit Jul 23, 2018
AutoLoads.py Added 32bit -> 64bit migration using https://github.com/Coder666/Invo… Nov 19, 2018
C2Server.py Updated to include change for #13 Dec 12, 2018
C2Viewer.py Initial Commit Jul 23, 2018
Cert.py Initial Commit Jul 23, 2018
Colours.py Initial Commit Jul 23, 2018
Config.py 'Updated print statements in preperation for Python3' Oct 27, 2018
Core.py 'Removed Print' Sep 2, 2018
DB.py 'Added List-URLs Command to DB' Oct 10, 2018
HTML.py 'Removed html and replaced with cgi' Oct 27, 2018
Help.py Added 32bit -> 64bit migration using https://github.com/Coder666/Invo… Nov 19, 2018
INSTALL.txt Updated INSTALL notes Dec 2, 2018
INSTALL_Socks.txt Initial Commit Jul 23, 2018
INSTALL_Windows.txt Initial Commit Jul 23, 2018
Implant.py Updated to work with FIPSAlgorithmPolicy Dec 2, 2018
ImplantHandler.py Updated to add option to upload file that is not Hidden & System - Nov 15, 2018
Install.sh Initial Commit Jul 23, 2018
LICENSE Initial Commit Jul 23, 2018
OfflineReportGenerator.py Removed versioning and typo Dec 6, 2018
Payloads.py Updated to work with FIPSAlgorithmPolicy Dec 2, 2018
README.md Updated README Dec 12, 2018
TabComplete.py Initial Commit Jul 23, 2018
Tasks.py Updated InstallEXE-Persistence Aug 9, 2018
Update.sh Update update.sh Sep 26, 2018
changelog.txt Added 32bit -> 64bit migration using https://github.com/Coder666/Invo… Nov 19, 2018
poshc2.service Initial Commit Jul 23, 2018
requirements.txt Initial Commit Jul 23, 2018

README.md

PoshC2

PoshC2 is a proxy aware C2 framework that utilises Powershell and/or equivalent (System.Management.Automation.dll) to aid penetration testers with red teaming, post-exploitation and lateral movement. Powershell was chosen as the base implant language as it provides all of the functionality and rich features without needing to introduce multiple third party libraries to the framework.

In addition to the Powershell implant, PoshC2 also has a basic dropper written purely in Python that can be used for command and control over Unix based systems such as Mac OS or Ubuntu.

The server-side component is written in Python for cross-platform portability and speed, a Powershell server component still exists and can be installed using the 'Windows Install' as shown below but will not be maintained with future updates and releases.

Linux Install of PoshC2_Python

Install using curl & bash

curl -sSL https://raw.githubusercontent.com/nettitude/PoshC2_Python/master/Install.sh | bash

Manual install

wget https://raw.githubusercontent.com/nettitude/PoshC2_Python/master/Install.sh
chmod +x ./Install.sh
./Install.sh

Windows Install of PoshC2

powershell -exec bypass -c "IEX (New-Object System.Net.WebClient).DownloadString('https://raw.githubusercontent.com/nettitude/PoshC2/master/C2-Installer.ps1')"

Issues / FAQs

If you are experiencing any issues during the installation or use of PoshC2 please refer checkout the open issues tracking page within GitHub. If this page doesn't have what you're looking for please open a new issue and we will try to resolve the issue asap.

If you are looking for tips and tricks on PoshC2 usage and optimisation, you are welcome to join the slack channel below.

License / Terms of Use

This software should only be used for authorised testing activity and not for malicious use.

By downloading this software you are accepting the terms of use and the licensing agreement.

Documentation

We maintain PoshC2 documentation over at https://poshc2.readthedocs.io/en/latest/

Find us on #Slack - poshc2.slack.com (to request an invite send an email to labs@nettitude.com)