Command and Control Framework. I'm developing this for my learning purpose.
- The C2 server and C2 client.
- gRPC server/client for operations.
- TLS for secure communication between the C2 server, C2 client, and agents.
- HTTPS listener.
- SQLite for the data persistence.
This project can be used for educational purpose only.
It's prohibited to use it on systems which is not under your control.
It's assumed that you operate both the C2 server and C2 client on Linux.
- Linux
- Go 1.21+
First, clone the repository and get into the project directory.
git clone https://github.com/hideckies/hermit.git
cd hermitC2 Server:
make server
./hermit -hC2 Client:
make client
./hermit-client -h1. Set the Configuration
The config.json is in the project root. You can edit it for setting the bind address/port, domains, etc. Hermit automatically reads this configurations when starting the server.
2. Start the C2 server and console
Simply execute the hermit command in the Hermit project root.
hermit
# or
hermit serverYou can also specify the config file path:
hermit -c /path/to/config.jsonNow the C2 server and console start and you can do all operations for the Hermit C2.
- As solo, you can use it as is in this server console.
- As team, proceed below to run the C2 client for each operator.
3. Transfer the Client Config File
If you want to use Hermit as team and use C2 clients, please do the follow:
- Once the C2 server starts, the client config file is generated at
$HOME/.hermit/server/configs/client-config-<operator>.json. - Transfer this file to the C2 client computer.
- To generate a new config file for another operator, run the
client-config gencommand on the C2 server console.
1. Set the Configuration
Before starting the C2 client, please follow the above "Transfer the Client Config File" section. You can edit the following config as needed:
- operator
2. Start the C2 client
You can start the C2 client anywhere, not just the project root.
hermit-client -c /path/to/client-config.json