/sally-the-sliver-siren

A custom sliver client that will send slack notifications upon new beacons / sessions that check in

Primary LanguagePython

Sally the Slier Siren

A custom sliver client that will send slack notifications upon new beacons / sessions that check in. Can either be run with a config file (that will be reloaded after sleep number of seconds, except for the sliver_config as the intial connection is used for all checks).

Usage

To use Sally, first install all dependencies using pip:

pip3 install -r requirements.txt

Once all dependencies are installed, you can then run the python script (which will run continuously).

usage: sally.py [-h] [-c CONFIG] [-S SLIVER_CONFIG] [-u SLACK_URL] [-s SLEEP]

Custom Sliver client that will will emit events and send webhook notifications when new beacons / sessions check in.

optional arguments:
  -h, --help            show this help message and exit
  -c CONFIG, --config CONFIG
                        Path to sally config file (which will immediately take effect as changes to Sally)
  -S SLIVER_CONFIG, --sliver_config SLIVER_CONFIG
                        Path to the sliver config to connect with
  -u SLACK_URL, --slack_url SLACK_URL
                        Slack URL to send notifications to
  -s SLEEP, --sleep SLEEP
                        Sleep time in between checking for changes in beacons / sessions

Usage with Command Line

If you want to run the command using only the command line arguments, a sample command would look like the following:

python3 ./sally.py -S /path/to/sliver-config.conf -s 10 -u https://slack.com

Usage with Config File

If you choose to run the custom client as a service on the host, the most convenient way to manage the arguments is via a configuration file that will propogate changes into the running service every sleep number of seconds.

python3 ./sally.py -c /path/to/sally-config.conf

For convenience, there is a config_example.yml file included in the repo (default search location for Sally is ./config.yml).

Running Continuously

Since this is just a python script, you can choose to install it as a service and run it continuously that way OR you can use a tmux / screen session to run it. If you want to go the service route, I have an example service file included in this repo.