search

Neo23x0 / Loki

Loki - Simple IOC and YARA Scanner
https://www.nextron-systems.com/compare-our-scanners/
GNU General Public License v3.0
3.4k stars 583 forks source link

To find c2 server malicious IP and domains #247

Closed Rameshkhanna123 closed 3 weeks ago

Rameshkhanna123 commented 11 months ago

Hi Team, I would like to understand how the C2 Back Connect Check works. Could you please provide me with the sample POC and arguments? I tried but its not working for me

Neo23x0 commented 11 months ago

Team? It checks the network connections of running processes. Better use THOR Lite. https://www.nextron-systems.com/thor-lite/