It is time for part 4 in this series to set up a Command and Control, and this time I am trying out C2 server Covenant. You can go and read about Covenant here https://github.com/cobbr/Covenant.
A picture says more than 1000 words so lets start with that!
systemctl enable ssh
systemctl start ssh
After installation of kali it is time to install stuff that will the server to get enabled for Covenant! We will start with som dot.net stuff
sudo snap install dotnet-sdk --classic --channel=3.1
apt-get install git
git clone –recurse-submodules https://github
We have now got everything installed to get this C2 server up and running.
Go to the directory of Covenant/Covenant
If you get below error, it is solved by exporting this:
After the export we run the command again!
The server is up and running. If you want to use lower ports like 80 or 443 you need to run this as root.
Go to a browser on the machine and access http://127.0.0.1:7443 and try
Press the Listeners meny on the left.
It is time to create a listener for our C2 server. Press Create.
Fill in your information. That is right for you.
Then it is time to create Launcher that will connect to our C2 server. On the left meny press Launchers and the press powershell.
Then run the powershell command on the victim.
When you have run one of the command from above. The client will pop up in web gui under Grunts
Press the name to interact with the victim
Under task you predefined task that you can run
The result from task is whoami
New listener for https and external access thru Socat
Configure the https listerner with certificate. If you have a wildcard cert like me from lets encrypt lets create a certificate for the https listener.
openssl pkcs12 -export -out domain.name.pfx -inkey domain.name.key -in domain.name.crt
Then we create the listener like this
We have now tried the basics with this C2 application called Covenant!
If you like gui of a C2 this will be a really nice one for you.
This was all for now!
Leave a Reply