
This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix


This repository aims to collect and document indicators from the different C2's (mostly implants) listed in the C2-Matrix

Note: The analysis provided here is based on a code-review process. If you find any errors or you have additonal indicators please submit a PR.

Evaluated C2's

Below is a list of the currently evaluated C2's

Repository Structure

Currently the project is using the Markdown format to describe the analysis and findings.


  • Add MITRE-ATT&CK mapping
  • Add Eventlog and Sysmon mapping
  • Provide list of indicators in CSV/JSON format