Mallware Posted February 22, 2023 Share Posted February 22, 2023 This is the hidden content, please Sign In or Sign Up About Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit. Requirements Install PRAW library in python3: pip3 install praw TO-DO Teamserver and agent compatible in Windows/Linux Make the traffic encrypted Add upload/download feature Add persistence feature Generate the agents dynamically (from the TeamServer) Tab autocompletion Scanning results Since it is a custom C2 Implant, it doesn't get detected by any AV as the bevahiour is completely legit. This is the hidden content, please Sign In or Sign Up Dowload: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts