Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

To find c2 server malicious IP and domains #247

Open
Rameshkhanna123 opened this issue Dec 11, 2023 · 1 comment
Open

To find c2 server malicious IP and domains #247

Rameshkhanna123 opened this issue Dec 11, 2023 · 1 comment

Comments

@Rameshkhanna123
Copy link

Hi Team, I would like to understand how the C2 Back Connect Check works. Could you please provide me with the sample POC and arguments? I tried but its not working for me
@Rameshkhanna123 Rameshkhanna123 changed the title How to find malicious IP and domains To find c2 server malicious IP and domains Dec 11, 2023
@Neo23x0
Copy link
Owner

Neo23x0 commented Dec 11, 2023

Team?
It checks the network connections of running processes.
Better use THOR Lite.
https://www.nextron-systems.com/thor-lite/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Neo23x0 @Rameshkhanna123