Closed tdaquino closed 1 year ago
Hey sorry, I completely missed this. Were you ever able to get it resolved?
Also is it a self-signed certificate? I'm wondering if it's not trusted, and that might be the issue.
No worries. Thanks for following up. I put it aside due to other priorities so I did not get it resolved. I definitely would have had a self-signed certificate on the server side. I can go back and test it again. Is trusting the certificate on the agent machine a requirement for the agent to work?
I mainly asked because I don't recall if I specifically added a "ignore invalid SSL" code into the profile, so that may have been the cause of the issue. I'll look into that and add it if it's not the case at the very least.
Added ignore invalid ssl code to HTTP profile in dev
branch.
Describe the bug Athena callback to HTTP C2 profile with SSL enabled fails to connect.
C2 profile config without SSL:
Athena payload config without SSL:
Athena callback without SSL debug output:
C2 profile config with SSL:
Athena payload config with SSL:
Athena callback with SSL debug output:
To Reproduce Steps to reproduce the behavior: Start an HTTP C2 profile with SSL enabled. Create an Athena payload associated with the HTTP C2 profile. Enter the proper callback host and port information. Submit the payload for build. Download and execute the Athena payload on a host and wait for the callback.
Expected behavior The payload should connect and create an active callback.
Screenshots None
Desktop (please complete the following information):
Agent Config See agent config above.
Additional context None