To find c2 server malicious IP and domains

Question

To find c2 server malicious IP and domains

Rameshkhanna123 opened this issue 9 months ago · 1 comments

Hi Team, I would like to understand how the C2 Back Connect Check works. Could you please provide me with the sample POC and arguments? I tried but its not working for me

Answer 1 · 2023-12-11T15:36:32.000Z

Team?
It checks the network connections of running processes.
Better use THOR Lite.
https://www.nextron-systems.com/thor-lite/