Search the Community
Showing results for tags 'merlin'.
-
Merlin is a cross-platform post-exploitation Command & Control server and agent written in Go. v1.5.1 Added Documentation for proxying Agent DLL provided by @HuskyHacks in PR 136 Security PR 137 - Bump golang.org/x/text from 0.3.7 to 0.3.8 by dependabot PR 138 - Bump golang.org/x/net from 0.0.0-20220708220712-1185a9018129 to 0.7.0 by dependabot PR 139 - Bump golang.org/x/crypto from 0.0.0-20200709230013-948cd5f35899 to 0.1.0 by dependabot PR 140 - Bump golang.org/x/net from 0.1.0 to 0.7.0 by dependabot [hide][Hidden Content]]
-
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. HTTP/2 is a newly ratified protocol documented under RFC 7540 that aims to solve some of the problems with HTTP/1.x and provide functionality to support current web application operations. HTTP/2 communications are multiplexed, bi-direction connections that do not end after one request and response. Additionally, HTTP/2 is a binary protocol that makes it more compact, easy to parse, and not human readable without the use of an interpreting tool. An HTTP/2 connection can be setup by upgrading a HTTP/1.x connection using the `Upgrade` header or during the negotiation of a TLS encrypted channel. Application-Layer Protocol Negotiation (ALPN) is a TLS 1.2 extension that is required to setup a HTTP/2 connection identified with the `h2` protocol string. TLS versions less than 1.2 are not equipped to negotiate a HTTP/2 connection. Oddly enough, the client will perform one final check to ensure that the server can speak HTTP/2 by sending the string PRISM. This reminds me of the NSA PRISM program. An introductory blog post can be found : [Hidden Content] demo : [Hidden Content] Source & Download : [Hidden Content]