Architecting Mythic: The Evolution and Engineering of a C2 Framework

How to build your own Command & Control tool.

Description

It's difficult to perform red teaming without the use of any command and control (C2) framework. Like all software, C2 frameworks have their own personalities, nomenclature, features, and quirks. As technologies, companies, and red teaming evolves over time, there's unlikely to ever be a single C2 framework that meets all the objectives for all red teaming exercises everywhere. As such, many red teams at least discuss the idea of making their own C2 framework or modifying an existing one to meet their needs. This quickly proves to be a more laborious task than many anticipate, especially as more features are added or requested. This talk is about the lessons learned and the tips/tricks I've discovered about C2 development with the Mythic framework over the past 7 years.

Why the committee chose this talk

Thomas from Spectreops (famous for Bloodhound) talking about creating C2 tools. A must hear.