Member-only story

Hunting C2

Michael Koczwara

3 min readSep 1, 2022

Hunting C2/Adversaries Infrastructure with Shodan and Censys

Hunting C2

My research

Cobalt Strike C2
Metasploit/MSF
Covenant C2
Deimos C2
Posh C2
Brute Ratel C4
Mythic C2
Sliver C2
Evilginx Infrastructure
Gophish Infrastructure
IcedID Infrastructure
Viper Infrastructure
ARL/Assessment Reconsassaince Tool Infrastructure
Night Hawk C2
NimPlant C2
ShadowPad C2 Infrastructure
Async Rat C2 Infrastructure
Meterpreter C2 Infrastructure
C3 from WithSecure

Collection of my Tweets:

Cobalt Strike, MSF, Covenant, Mythic, and Brute Ratel C4

Create an account to read the full story.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Continue in app

Or, continue in mobile web

Sign up with Google

Sign up with Facebook

Already have an account? Sign in

Written by Michael Koczwara

Threat Researcher

Responses (1)

Write a response

What are your thoughts?

Also publish to my profile

Haynesyu

Oct 20, 2022

fofa looks to have more results

Recommended from Medium

BTLO Walkthrough | Digital Forensics |Detailed Guide Step by Step

Riley Pickles

BTLO Walkthrough | Digital Forensics |Detailed Guide Step by Step

Swift

Sep 29, 2024

Baselines 101: Building Resilient, Frictionless SIEM Detections

In

Detect FYI

by

Alex Teixeira

Baselines 101: Building Resilient, Frictionless SIEM Detections

How to leverage Enterprises' Circadian Window to spot unusual activity and potentially uncover cyber threats.

Feb 12

Lists

Tech & Tools

23 stories402 saves

Medium's Huge List of Publications Accepting Submissions

414 stories4636 saves

Staff picks

821 stories1639 saves

Natural Language Processing

1967 stories1612 saves

Red Teaming 101: Using LNK Files for Initial Access. (Part 1)

In

OSINT Team

by

Abdellaoui Ahmed

Red Teaming 101: Using LNK Files for Initial Access. (Part 1)

Cybersecurity is a constantly evolving field, where red teamers are always looking for new ways to stay ahead of defenders. Gaining initial…

Oct 4, 2024

Unintentional Evasion: Investigating How CMD Fragmentation Hampers Detection & Response

In

Detect FYI

by

Kostas

Unintentional Evasion: Investigating How CMD Fragmentation Hampers Detection & Response

Discover how CMD command fragmentation creates security blind spots, letting attackers evade detection and complicate investigations.

Oct 3, 2024

Procedure for Detecting Malicious Activity Using System Administration Tools (Living off the Land)

Elias Nathan Hueck

Procedure for Detecting Malicious Activity Using System Administration Tools (Living off the Land)

In modern security environments, attackers increasingly employ tactics to evade traditional detection systems. One common strategy is the…

Nov 7, 2024

Building a Automated Linux Sandbox for Malware Analysis

In

CSIT tech blog

by

Winson Low

Building a Automated Linux Sandbox for Malware Analysis

An automated Linux sandbox is vital today, enabling safe analysis of rising threats and helping us stay ahead of emerging vulnerabilities.

Oct 10, 2024

See more recommendations

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams