Kali Linux

Tetanus : Mythic C2 Agent Targeting Linux And Windows Hosts Written In Rust

Tetanus is a Windows and Linux C2 agent written in rust.

Installation

To install Tetanus, you will need Mythic set up on a machine.

In the Mythic root directory, use mythic-cli to install the agent.

sudo ./mythic-cli install github https://github.com/MythicAgents/tetanus
sudo ./mythic-cli payload start tetanus

Tetanus supports the http C2 profile:

sudo ./mythic-cli install github https://github.com/MythicC2Profiles/http
sudo ./mythic-cli c2 start http

Features

  • Background job management
  • Built-in ssh client
    • Connect to a machine and download/upload files between that machine and Mythic
    • Get directory listings from machines using sftp
    • Spawn agents on machines using ssh
    • ssh-agent hijacking
  • Streaming portscan
  • Stand up TCP redirectors

Future Additions

  • v0.2.0
    • Socks proxying
    • Windows token manipulation
    • More browser script integration
    • DNS C2 profile
    • p2p capabilities
    • In memory shellcode execution execute-shellcode

General Commands

CommandSyntaxDescription
catcat [file]Output the contents of a file.
cdcd [new directory]Change directory.
cpcp [source] [destination]Copy a file from [source] to [destination].
downloaddownload [path]Download a file from the target system (supports relative paths).
exitexitExit the agent.
getenvgetenvGet the current environment variables.
getprivsgetprivsGet the privileges of the agent session.
jobkilljobkill [job id]Shutdown a running background job.
jobsjobsList currently running background jobs.
lsls [directory]List files or directories (supports relative paths).
mkdirmkdir [directory]Make a new directory.
mvmv [source] [destination]Move a file from [source] to [destination] (supports relative paths).
portscanportscan [popup]Scan a list of IPs for open ports.
pspsGet a list of currently running processes.
pwdpwdPrint working directory.
redirectredirect [<bindhost>:<bindport>:<connecthost>:<connectport>]Setup a TCP redirector on the remote system.
rmrm [path]Remove a file or directory (supports relative paths).
setenvsetenv [name] [value]Set environment variable [name] to [value].
shellshell [command]Run a shell command with bash -c on Linux or cmd.exe /c on Windows in a new thread.
sleepsleep [interval][units] [jitter]Set the sleep interval and jitter (supports unit suffixing).
sshssh [popup]Use ssh to execute commands, download/upload files or grab directory listings.
ssh-agentssh-agent [-c <socket>] [-d] [-l]Connect to running ssh agent sockets on the host or list identities.
ssh-spawnssh-spawn [popup]Spawn a Mythic agent on a remote host using ssh.
unsetenvunsetenv [var]Unset an environment variable.
uploadupload [popup]Upload a file to the host machine.

Windows-specific Commands

CommandSyntaxDescription
powershellpowershell [command]Run a command using powershell.exe /c in a new thread.
Download
R K

Leave a Comment
Share
Published by
R K
Tags: C2linuxMythicTetanusWindows Hosts
3 years ago

Recent Posts

How Web Application Firewalls (WAFs) Work

General Working of a Web Application Firewall (WAF) A Web Application Firewall (WAF) acts as…

5 days ago

How to Send POST Requests Using curl in Linux

How to Send POST Requests Using curl in Linux If you work with APIs, servers,…

5 days ago

What Does chmod 777 Mean in Linux

If you are a Linux user, you have probably seen commands like chmod 777 while…

5 days ago

How to Undo and Redo in Vim or Vi

Vim and Vi are among the most powerful text editors in the Linux world. They…

5 days ago

How to Unzip and Extract Files in Linux

Working with compressed files is a common task for any Linux user. Whether you are…

5 days ago

Free Email Lookup Tools and Reverse Email Search Resources

In the digital era, an email address can reveal much more than just a contact…

5 days ago