Sliver - Implant Framework
Sliver is a full general purpose cross-platform implant framework that supports C2 over Mutual-TLS, HTTP(S), in addition to DNS. Implants are dynamically compiled alongside unique X.509 certificates signed yesteryear a per-instance certificate ascendancy generated when y'all kickoff run the binary.
The server, client, in addition to implant all back upwardly MacOS, Windows, in addition to Linux (and maybe every Golang compiler target but we've non tested them all).
Features
- Dynamic code generation
- Compile-time obfuscation
- Local in addition to remote procedure injection
- Anti-anti-anti-forensics
- Secure C2 over mTLS, HTTP(S), in addition to DNS
- Windows procedure migration
- Windows user token manipulation
- Multiplayer-mode
- Procedurally generated C2 over HTTP (work inwards progress)
- Let's Encrypt integration
- In-memory .NET assembly execution
- DNS Canary Blue Team Detection
Getting Started
Download the latest release in addition to encounter the Sliver wiki for a quick tutorial on basic setup in addition to usage. To teach the rattling latest in addition to greatest compile from source.
Compile From Source
See the wiki.
Source Code
The source code repo contains the next directories:
assets/
- Static assets that are embedded into the server binary, generated yesteryeargo-assets.sh
client/
- Client code, the bulk of this code is likewise used yesteryear the serverprotobuf/
- Protobuf codeserver/
- Server-side codesliver/
- Implant code, rendered yesteryear the server at runtimeutil/
- Utility functions that may last shared yesteryear the server in addition to client