Automates Covenant C2 framework for authorized red team operations: authenticates to API, creates HTTP/HTTPS listeners, generates PowerShell/binary launchers, deploys Grunts, executes tasks, tracks lateral movement.
npx claudepluginhub killvxk/cybersecurity-skills-zhThis skill uses the workspace's default tool permissions.
Covenant 是一款面向红队的协作式 .NET C2 框架,提供 Swagger 文档化的 REST API,用于管理监听器、启动器、Grunt(代理)和任务。本技能涵盖通过其 API 自动化 Covenant 操作,用于授权的红队演练:创建 HTTP/HTTPS 监听器、生成二进制和 PowerShell 启动器、部署 Grunt、在被攻陷主机上执行任务,以及追踪横向移动。
Automates Covenant C2 red team ops via API: listener setup, PowerShell/binary launcher generation, grunt deployment, task execution, lateral movement tracking for authorized pentests.
Automates Covenant C2 red team operations via API: HTTP/HTTPS listener setup, launcher generation, grunt deployment, task execution, and lateral movement tracking. For authorized security assessments.
Deploys and configures production-grade Havoc C2 infrastructure for authorized red team operations, including Ubuntu team server, Nginx HTTPS redirectors, and Demon agents.
Share bugs, ideas, or general feedback.
Covenant 是一款面向红队的协作式 .NET C2 框架,提供 Swagger 文档化的 REST API,用于管理监听器、启动器、Grunt(代理)和任务。本技能涵盖通过其 API 自动化 Covenant 操作,用于授权的红队演练:创建 HTTP/HTTPS 监听器、生成二进制和 PowerShell 启动器、部署 Grunt、在被攻陷主机上执行任务,以及追踪横向移动。
requests 库向 /api/users/login 端点发送凭据以获取 JWT 令牌。
配置带有回调 URL 和绑定地址的 HTTP 或 HTTPS 监听器。
创建与监听器绑定的二进制、PowerShell 或 MSBuild 启动器,用于 Grunt 部署。
监控 Grunt 回调,执行任务,并从被攻陷主机收集输出。
生成记录所有操作、时间戳和发现的操作报告。
包含监听器配置、活跃 Grunt、已执行任务和任务输出的 JSON 报告,用于演练文档化。