Tweet
Greetings all, excited to be back at Demo Labs!!
Introduction
BeaconatorC2 was spawned out of several other research initiatives surrounding EDR evasion, LOLBINs, Escape to host flaws, and particularly scripting languages with portable interpreters like AutoIt and AutoHotkey. What we needed was a quick and easy process to setup beacons in restrictive or poorly documented languages and environments, such as WWB-COM, or AIX mainframes. We made BeaconatorC2 to fill that gap, providing a simple and modular communication standard and management application to support any type of beacon. This way, once we find new paths for execution, we can quickly build supported beacons for additional exploitation.
Features
Resources
You can check out the beta on GitHub, but please note that the full release will not be uploaded until hacker summer camp actually starts: https://github.com/CroodSolutions/BeaconatorC2
Feel free to reach out to me with any questions. Will respond quickest here: https://x.com/Shammahwoods
Thanks again to Demo Labs for having us, super excited to be presenting this year!
Introduction
BeaconatorC2 was spawned out of several other research initiatives surrounding EDR evasion, LOLBINs, Escape to host flaws, and particularly scripting languages with portable interpreters like AutoIt and AutoHotkey. What we needed was a quick and easy process to setup beacons in restrictive or poorly documented languages and environments, such as WWB-COM, or AIX mainframes. We made BeaconatorC2 to fill that gap, providing a simple and modular communication standard and management application to support any type of beacon. This way, once we find new paths for execution, we can quickly build supported beacons for additional exploitation.
Features
- Schema-driven command interface: BeaconatorC2 uses a GUI for beacon management that is dynamically updated based on the capabilities of each beacon. Beacon capabilities can be defined using a well documented YAML schema, determining variables and formats to use for executing beacon modules.
- Simple communication: A simple pipe-delimited protocol is used for all beacon-to-manager communication. It is comprised of only a few core commands to shorten development time in getting beacons operational.
- Protocol support: Currently HTTP, TCP, UDP, SMB, and Meterpreter sessions are supported receiver types. This includes inline base64, XOR key, or ROT encoding support automatically.
- Metasploit RPC integration: BeaconatorC2 ships with an integrated RPC client. You can generate, send, and execute payloads with selected beacons, while the manager handles listeners for interaction.
- Workflow automation: Schedule and execute defined modules with conditional branching and parameter piping. Think SOAR, but for beacons.
Resources
You can check out the beta on GitHub, but please note that the full release will not be uploaded until hacker summer camp actually starts: https://github.com/CroodSolutions/BeaconatorC2
Feel free to reach out to me with any questions. Will respond quickest here: https://x.com/Shammahwoods
Thanks again to Demo Labs for having us, super excited to be presenting this year!